Determine Threat Types
What is STRIDE?
STRIDE is a taxonomy used in Microsoft to identify a threat.
STRIDE means:
Spoofing Identity
The concept of spoofing identity is allowing unprivileged code to use someone else's identity, and hence, their security credentials. For example, a driver that uses some form of a
password mechanism is subject to this type of attack. Not all such drivers have security flaws, although, they are vulnerable to security flaws based on spoofing identity. The designers and implementers of the driver need to evaluate the level of vulnerability.
Tampering
Data tampering is the deliberate destruction or manipulation of data.
Repudiation
Repudiability is the notion of denying that an action occurred. Denying that you received an item, when in fact you did, and expecting the vendor to supply you another is an example of repudiability.
Information Disclosure
The severity of information disclosure is dependent upon the sensitivity of the information disclosed. For example, since medical data is highly sensitive, its disclosure would be a severe threat. In addition, disclosure of information about the application structure, such as path disclosure of a server-based application, can be equally threatening.
Denial of Service
DoS attacks occur when a system is flooded with traffic to the point that it is unable to process legitimate service requests.
Elevation of Privilege
An elevation of privilege occurs when a user obtains privileged access to portions of the application or data that are normally inaccessible to the user.
More information: http://msdn2.microsoft.com/en-us/library/aa291875(VS.71).aspx#vxcondesigningforsecurabilityanchortamperingwithdata