Glossary
STRIDE
STRIDE is a checklist for finding security threats - six categories of bad things that attackers might try.
What is STRIDE?
Threat modeling framework categorizing threats as Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, and Elevation of privilege.
Why Should You Care?
STRIDE provides systematic threat identification. It ensures comprehensive coverage during threat modeling.
Is your business exposed?
Real-World Example
A STRIDE analysis of an API reveals missing authentication (Spoofing) and inadequate logging (Repudiation).
How to Protect Against STRIDE
- 1.
Use STRIDE for application threat modeling
- 2.
Document mitigations for each threat category
Related Terms
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required