STRIDE is a model for identifying computer security threats[1] developed by Praerit Garg and Loren Kohnfelder at Microsoft.[2] It provides a mnemonic for security threats in six categories.[3]
The threats are:
Spoofing
Tampering
Repudiation
Information disclosure (privacy breach or data leak)
Denial of service
Elevation of privilege[4]
The STRIDE was initially created as part of the process of threat modeling. STRIDE is a model of threats, used to help reason and find threats to a system. It is used in conjunction with a model of the target system that can be constructed in parallel. This includes a full breakdown of processes, data stores, data flows, and trust boundaries.[5]
Today it is often used by security experts to help answer the question "what can go wrong in this system we're working on?"
Each threat is a violation of a desirable property for a system:
Threat
Desired property
Threat Definition
Spoofing
Authenticity
Pretending to be something or someone other than yourself
Tampering
Integrity
Modifying something on disk, network, memory, or elsewhere
Repudiation
Non-repudiability
Claiming that you didn't do something or were not responsible; can be honest or false
Information disclosure
Confidentiality
Someone obtaining information they are not authorized to access
Denial of service
Availability
Exhausting resources needed to provide service
Elevation of privilege
Authorization
Allowing someone to do something they are not authorized to do
^Kohnfelder, Loren; Garg, Praerit (April 1, 1999). "The threats to our products". Microsoft Interface. Retrieved 13 April 2021.
^Shostack, Adam (27 August 2009). ""The Threats To Our Products"". Microsoft SDL Blog. Microsoft. Retrieved 18 August 2018.
^"The STRIDE Threat Model". Microsoft. Microsoft.
^Guzman, Aaron; Gupta, Aditya (2017). IoT Penetration Testing Cookbook: Identify Vulnerabilities and Secure your Smart Devices. Packt Publishing. pp. 34–35. ISBN 978-1-78728-517-0.
^Shostack, Adam (2014). Threat Modeling: Designing for Security. Wiley. pp. 61–64. ISBN 978-1118809990.
STRIDE is a model for identifying computer security threats developed by Praerit Garg and Loren Kohnfelder at Microsoft. It provides a mnemonic for security...
Look up stride in Wiktionary, the free dictionary. Stride or STRIDE may refer to: STRIDEmodel, used for threat modelingStride (software), a successor...
structured approaches such as STRIDE per element. STRIDE, Patterns and Practices, and Asset/entry point were amongst the threat modeling approaches developed and...
Prince of Stride (プリンス・オブ・ストライド, Purinsu Obu Sutoraido) is a Japanese multimedia series by ASCII Media Works. The project was unveiled in April 2012 in...
codebase and related IP assets of HipChat and Stride from Atlassian. Following this, HipChat and Stride customers were migrated to the Slack group collaboration...
the co-creator, with Praerit Garg, of the STRIDEmodel of security threats, widely used in threat modeling. In 2021 he published the book Designing Secure...
oriented edges, or blobs of color. Stride controls how depth columns around the width and height are allocated. If the stride is 1, then we move the filters...
Industries to Saucony. In 2005, Saucony was acquired by Stride Rite Corporation for $170 million. Stride Rite was acquired in 2007 for $800 million by Payless...
rotation to the hub. The StreetStrider drive assembly is either chained or chainless direct drive, depending on model. The lower end of each arm lever...
PT, and RC models. Strider's first project as a company was to supply Naval Special Warfare Group 1 with WB and BG models in 1994. Strider Knives currently...
crucial for understanding how the body moves forward. In a full stride length model, elements of both the terminal swing and footstrike contribute to...
outsole geometry designed to promote inherent stability and an efficient stride. The company sponsors a variety of professional runners; its first athletes...
The Strider SMF is a framelock folding knife that was specifically developed for Det One, the first unit of the United States Marine Corps (USMC) under...
Romee Strijd (/ˈroʊmeɪ ˈstraɪd/ roh-may stride, Dutch: [ˈroːmeː ˈstrɛit]; born 19 July 1995) is a Dutch model. A former Victoria's Secret Angel, she appeared...
regarding the changeable stride length function feature on some newer ellipticals. Though procedures vary between various models, most are similar in that...
variable. The stride length is determined by the length of a person's legs, so it is the dependent variable. Having long legs increases stride length, but...
for full repayment and repeal range from 2048 to 2068, based on financial models from Sound Transit. The primary "yes" campaign, Mass Transit Now, was originally...
ISSN 0093-7673. "Talisa Soto: Catwalk Queen Strides To New Life". New Sunday Times: 2. July 23, 1989. Talisa Soto at Fashion Model Directory Limnander, Armand (October...
perfectly in front of the other in fluid motion distinguish her catwalk stride, usually garnished with a serious, sultry expression. She has described...
should still be able to collect its stride when asked. The horse must also be proficient at lengthening its canter stride while still maintaining its tempo...
Nobel Laureate Manfred Eigen in developing the quasispecies model. His work has made great strides in the understanding of viruses and their replication, as...