University of Bahrain
Scientific Journals
A STRIDE Model based Threat Modelling using Unified and-Or Fuzzy Operator for Computer Network Security
JavaScript is disabled for your browser. Some features of this site may not work without it.
| dc.contributor.author | Khan,Salman A. | |
| dc.date.accessioned | 2018-07-31T08:49:52Z | |
| dc.date.available | 2018-07-31T08:49:52Z | |
| dc.date.issued | 2017-01 | |
| dc.identifier.issn | 2210-1519 | |
| dc.identifier.uri | https://journal.uob.edu.bh:443/handle/123456789/1791 | |
| dc.description.abstract | In the present era, security has become a fundamental issue in efficient and proper functioning of computer and network systems. To prevent and mitigate a system, an important issue to understand how different threats could damage a network system. Keeping this issue under consideration, this paper proposes risk assessment and modeling of threats which shows the level of any attack. STRIDE (Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, Elevation of privileges) is a model which covers numerous existing threats that are related to all security properties necessary for a secure network. An strategy has been proposed which takes the number and types of attacks as input and applies a fuzzy logic based threat assessment approach to assess the level of attack. The presented work uses a fuzzy operator, namely, unified AND–OR (UAO operator), and a decision-making approach based on a fuzzy rule. | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | University of Bahrain | en_US |
| dc.rights | Attribution-NonCommercial-ShareAlike 4.0 International | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-sa/4.0/ | * |
| dc.subject | In the present era, security has become a fundamental issue in efficient and proper functioning of computer and network systems. To prevent and mitigate a system, an important issue to understand how different threats could damage a network system. Keeping this issue under consideration, this paper proposes risk assessment and modeling of threats which shows the level of any attack. STRIDE (Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, Elevation of privileges) is a model which covers numerous existing threats that are related to all security properties necessary for a secure network. An strategy has been proposed which takes the number and types of attacks as input and applies a fuzzy logic based threat assessment approach to assess the level of attack. The presented work uses a fuzzy operator, namely, unified AND-OR (UAO operator), and a decision-making approach based on a fuzzy rule. | |
| dc.title | A STRIDE Model based Threat Modelling using Unified and-Or Fuzzy Operator for Computer Network Security | en_US |
| dc.type | Article | en_US |
| dc.identifier.doi | http://dx.doi.org/10.12785/IJCNT/050103 | |
| dc.volume | 05 | |
| dc.issue | 01 | |
| dc.pagestart | 13 | |
| dc.pageend | 20 | |
| dc.source.title | International Journal of Computing and Network Technology | |
| dc.abbreviatedsourcetitle | IJCNT |
Files in this item
This item appears in the following Issue(s)
Except where otherwise noted, this item's license is described as Attribution-NonCommercial-ShareAlike 4.0 International