Attacks and Threat Modeling

Threat Modeling
Threat Modeling (Source: CSSLP CBK)

Attack

Attack refers to “any kind of malicious activity that attempts to collect, disrupt, deny, degrade, or destroy information system resources or the information itself.” (CNSSI 4009-2015)

Attack Vector

Attack vector refers to the “path or means by which an attacker can gain access to a computer or network server in order to deliver a malicious outcome.” (ISO/IEC 27032)

Attack Vector
Attack Vector

NIST Generic Risk Model

An attack vector can be specifically described using the NIST Generic Risk Model. An attack vector refers to a threat scenario where the threat source initiates a threat event to exploit vulnerabilities.

NIST Generic Risk Model (NIST SP 800-30 R1)
NIST Generic Risk Model (NIST SP 800-30 R1)

Attack Surface

  • The set of points on the boundary of a system, a system component, or an environment where an attacker can try to enter, cause an effect on, or extract data from, that system, component, or environment. (NIST SP 800-53 Rev. 5)
  • set of attack points that an attacker can use in order to enter or capture data in an information system. (ISO/TS 12812-2:2017)

Attack Points/Vectors on Biometric System

Attack Points/Vectors on Biometric System
Attack Points/Vectors on Biometric System (Image Credit: Fahad Layth Malallah)

Cryptographic Attacks

Classification of Implementation Attacks
Classification of Implementation Attacks (Image Credit: David Oswald)
Side-Channel Attack
Side-Channel Attack

DDoS Attacks

DDoS Attack Taxonomy
DDoS Attack Taxonomy

Leave a Reply