Abstract
This paper refers important issues regarding how to evaluate the security threats of the online banking effectively, a system threat analysis method combining STRIDE threat model and threat tree analysis is proposed, which improves the efficiency of the threat analysis greatly and also has good practicability. By applying this method to the online banking system threat analysis, we construct STRIDE threat model on the analysis of the key business data, and then we construct threat tree on the security threat by layer-by-layer decomposition. Thus it gives a detailed threat analysis of the online banking system. This security threat analysis has important significance for the online banking system security analysis and for revealing the threats that the online banking facing. © 2014 SERSC.
Author supplied keywords
Cite
CITATION STYLE
Xin, T., & Xiaofang, B. (2014). Online banking security analysis based on STRIDE threat model. International Journal of Security and Its Applications, 8(2), 271–282. https://doi.org/10.14257/ijsia.2014.8.2.28
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
