Технічна інженерія (Jun 2024)
Modelling link-level threats in OWASP Threat Dragon with the development of a protection strategy
Abstract
Threat modelling is an important process when it comes to securing a network at all levels, as it helps identify potential vulnerabilities and threats that could affect the confidentiality, integrity and availability of data. Ensuring the protection of the data link layer is particularly important, as it is responsible for the transmission of data between devices on a local network. In order to effectively identify and eliminate its vulnerabilities, we propose a variant of building a threat model in the OWASP Threat Dragon environment, which provides opportunities for its visualisation and effective risk management. The STRIDE model is chosen to identify threats, and a scale for assessing their risks is proposed. To provide a better understanding of vulnerabilities, a report was generated based on the model, which allows for effective analysis of current information. Thanks to the modelling of link-level threats, we managed to develop effective solutions to improve network security. This will prevent potential attacks at this level and reduce possible risks. The created threat model can be used in many practical scenarios, including in-depth analysis of data transmission channels and identification of possible attack paths. It can also be used to assess risks and develop protection strategies that include encryption, access control and authentication. In addition, the model can improve employee training by raising their awareness of the security of network infrastructu.
Keywords
