Case Study and Implementation of Threat Modelling using MTT
Kotni Bangaru Krishnaveni
, D.Lalitha Bhaskari
Threat Modelling, STRIDE methodology, MTT tool, security, vulnerabilities, threats.
Any IT company deals with the creation and deployment of web applications. In this era when cybercrime has grown to be a serious menace. Threat Modelling (TM) is one of the key strategies for solving this issue. Threat modelling is locating and disseminating information regarding the dangers that could affect a specific system, network, or application. In this paper provides comprehensive view of threat modelling, TM approaches, and the many tools that are accessible. To create secure web applications, using Microsoft Threat Taxonomy (MTT) tool implements stride methodology. The STRIDE method is a popular one for threat modelling.it stands for spoofing, tampering, repudiation, information disclosure, denial of service, elevation of privilege. It examines the value of threat modelling in the current cybersecurity environment and how it aids businesses in identifying and addressing possible threats. For a secure design of online applications, MTT explains the approach to identify threats, threat boundaries, and mitigation actions. This essay serves as a case study for the application of the stride technique to MTT, outlining the procedures followed, the difficulties encountered, and the results obtained. The case study's conclusions and recommendations are explored, along with the best practices for efficient threat modelling. Overall, the goal of this work is to further the field of exploratory data analytics by offering suggestions and helpful advice on how to integrate threat modelling into the software development cycle. By doing this, the MTT tool's security was improved, guaranteeing that the necessary defences were put in place to lessen the threats that were discovered.
"Case Study and Implementation of Threat Modelling using MTT", IJSDR - International Journal of Scientific Development and Research (www.IJSDR.org), ISSN:2455-2631, Vol.8, Issue 9, page no.176 - 185, September-2023, Available :https://ijsdr.org/papers/IJSDR2309026.pdf
Volume 8
Issue 9,
September-2023
Pages : 176 - 185
Paper Reg. ID: IJSDR_208477
Published Paper Id: IJSDR2309026
Downloads: 000347019
Research Area: Computer Science & Technology
Country: Vizianagram, Andhra Pradesh, India
ISSN: 2455-2631 | IMPACT FACTOR: 9.15 Calculated By Google Scholar | ESTD YEAR: 2016
An International Scholarly Open Access Journal, Peer-Reviewed, Refereed Journal Impact Factor 9.15 Calculate by Google Scholar and Semantic Scholar | AI-Powered Research Tool, Multidisciplinary, Monthly, Multilanguage Journal Indexing in All Major Database & Metadata, Citation Generator
Publisher: IJSDR(IJ Publication) Janvi Wave