Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

What is the contribution of the Attacker Type entity to the threat model?

attacker contribution entity model Threat type
0
Posted

What is the contribution of the Attacker Type entity to the threat model?

0 CommentsAdd a Comment

1 Answer

0

The Attacker Types as well as the Entry Points entities are not mandatory for the PTA threat model. They were designed to help the analyst in affirming the validity of the threat scenarios and do not impact the calculation. This is also true for the Tags and the Attached Documents entities which add descriptive fields and additional information to the threat entities. 25. Two practical tips for building threat models: 1. When initiating a new threat analysis project it may be productive to reuse the last project you did (or one of the sample projects) as a base line. 2. Keep it simple. The following recipe may look a little counter-intuitive but if you follow the data entry order it will save you grief. First – Define your assets, the ones that when damaged youll feel the blow e.g. the availability of the companys Web site if the site is down we lose money. Then – Define countermeasures as mitigating activities. Each countermeasure description should contain a verb e.g. install and con

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123