HC3 Threat Briefing – Threat Modeling for Mobile Health Systems
Please see below the HHS Health Sector Cybersecurity Coordination Center (HC3) threat brief. This brief focuses on Threat Modeling for Mobile Health Systems and covers the following topics:
- – Introduction
- – Threat Modeling Overview
- – S.T.R.I.D.E
- – S.T.R.I.D.E: Spoofing
- – S.T.R.I.D.E: Tampering
- – S.T.R.I.D.E: Repudiation
- – S.T.R.I.D.E: Information Disclosure
- – S.T.R.I.D.E: Denial of Service
- – S.T.R.I.D.E: Elevating Privileges
- – Authentication Threats
- – Authorization Threats
- – Privacy Threats
- – Audit and Logging Threats
- – References
- – Questions