Threat Analysis and Modeling v2.1.2 Now Available!!!

The new build contains a few fixes including one for problem that caused the threat model documents to get corrupted.



Comments (1)

  1. vc-programmer says:


    i had a couple of questions on STRIDE modelling, not sure if this is the right place to ask.

    1> STRIDE is defined as "a method of classifying the effect of a threat being realized".

    (a) since its the >>effects<< of a threat being realized, what are threats then?

    (b) effects of a threat being realized is >>risk<<.

    2> Since STRIDE is listed as a method for threat modelling, where are threats coming into the picture, if at all?

    could you share whats your understanding about STRIDE…