STRIDE
Definition
STRIDE is a threat modeling methodology developed by Microsoft. It provides a mnemonic for developers and security professionals to use when identifying threats to a system. The acronym stands for Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege.
Why It Matters
STRIDE provides a structured framework for brainstorming what can go wrong with a system. By systematically considering each category of threat, teams are less likely to overlook potential vulnerabilities during the design phase.
Contextual Example
During a threat modeling session for a login feature, the team uses STRIDE: Spoofing (can a user pretend to be someone else?), Tampering (can a user tamper with the login request?), Repudiation (can a user deny they logged in?), Information Disclosure (does it leak password hints?), etc.
Common Misunderstandings
- Each element of STRIDE maps to a security property that it violates (e.g., Spoofing violates Authentication).
- It is one of the most widely used threat modeling methodologies.