In which phase of Threat Model, are STRIDE model and DREAD model classifications done?
Attachments:
Answers
Answered by
11
Answer:
Introduction phase is a answer but there is no option.
B is a answer click on b option.
Answered by
9
Explanation:
Introduction.
Application Threat Modeling with DREAD and STRIDE is a method for examining an application's security.
It is a method for identifying, classifying, rating, comparing, and prioritizing the security risks associated with an application.
The Microsoft STRIDE/DREAD model measures the likelihood and impact of exploiting a vulnerability using risk variables such as Damage and Affected Users.
The STRIDE/DREAD paradigm has been used in recent research to rank threats according to their severity.
Similar questions