W3C home > Mailing lists > Public > public-wsc-wg@w3.org > March 2007

Threat Trees

From: Stuart E. Schechter <ses@ll.mit.edu>
Date: Mon, 12 Mar 2007 14:58:05 -0400
To: Web Security Context WG <public-wsc-wg@w3.org>
Message-ID: <C21B1AFD.F7D4%ses@ll.mit.edu> 

I've updated the use case dimensions provided by Thomas and made a first
stab at a threat tree.  I've primarily focused on site-impersonation attacks
because I believe they are the focus of this working group (happy to be
corrected).

The draft is at:

   <http://www.w3.org/2006/WSC/wiki/ThreatTrees>

This is in response to
  ACTION-95:     Review use cases, suggest reorganization, ...
  ACTION-124:    Initiate work on threat tree
Received on Monday, 12 March 2007 19:01:30 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 5 February 2008 03:52:46 GMT