I hope I will have a chance to try the Security Development Lifecycle in practice. At last the project has become ready for STRIDE analysis.
S - spoofing identity
T - tampering with data
R - repudiation
I - information disclosure
D - denial of service
E - elevation of privilege
Technorati Теги: security
No comments:
Post a Comment