Discussion 4(14)
1. Research and select a cyberattack/cyber-incident in which one of the threat actors discussed was involved, provide link. Breakdown the motivation of this threat actor.
2. Select a phase of the SDLC and further breakdown its steps/criteria/goals/artifacts and so on.
3. Describe a generic threat model briefly. For example:
(a) Identify assets: website server, database, domain name
(b) Describe architecture: http/https requests and responses, business logic like SQL to communicate with database, web client to web server to data store communications
(c) Decompose application: database stores usernames/info/login process, lines of communication protocols, other technical aspects/functions possibly
(d) Identify threats: sql injection for login process, domain hijacking upon renewal, man-in-middle attack on unsecure communication, denial of service/distributed denial of service attacks on web servers
(e) Documents threats: (N/A for this discussion board, more of an actionable step to document the different threats)
(f) Rate threats: (rate on priority of the threats you listed, 1 being more severe) 1. denial of service attack/distributed denial of service attack, 2. sql injection 3. man-in-middle, 4. domain hijacking renewal
3 pages
5 years ago
15
Purchase the answer to view it

- Discussion414.doc
- Human Resources
- what does 2/8 look like on a number line with the numbers 1234567
- CIS 207 Week 4 Individual Assignment System Evaluation Paper
- . The Daytona International Airport has decided Embry-Riddle is no longer an asset to the airport and has taken a...
- IT 273 Unit 6 Project 6A UNIT 6 PROJECT CASE STUDY THE BANANA TREE TRAVEL AGENCY Answer
- 4x+8x=-12
- Just a cover letter for a resume
- factors that influence individual success
- The author, Michael Shaara, writes that in the Confederacy camp âthere is nothing more important than honorâ. In a conversation...
- This is assimgnet is for accountingdoctor only. You now what to do thanks!