STRIDE
Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege
STRIDE is Microsoft's threat modeling methodology that categorizes threats into six types. Each category maps to a specific security property: authentication, integrity, non-repudiation, confidentiality, availability, and authorization.
Cómo se usa en ciberseguridad
Security architects apply STRIDE during design reviews to identify threats against new systems and applications. Penetration testers use STRIDE categories to structure their attack narratives and findings reports. Threat modeling with STRIDE is a standard practice in secure software development lifecycles.
Término relacionado en el glosario: stride
Las definiciones son explicaciones originales escritas con fines de desarrollo profesional. Para definiciones técnicas autorizadas, consulta NIST, ISO o el organismo de normalización correspondiente.