secure-software-engineering/Exercise/Writeup/lab03.md

# Lab 3

## Stride examples

| DFD-Element | Concern | Example |
| -- | -- | -- |
| User | Spoofing | Send a chat message in the name of another user |
| User | Spoofing | Stolen credentials might be used to login |
| User Login | Tampering | Modify HTTP login header |
| Login | Denial of Service | Flood server with login requests |
| Login | Spoofing | Domain spoofing to impersonate server |
| Database | Information Disclosure | SQL Injection |
Update markdown files 2022-06-07 10:19:10 +02:00			`# Lab 3`

			`## Stride examples`

			`\| DFD-Element \| Concern \| Example \|`
			`\| -- \| -- \| -- \|`
			`\| User \| Spoofing \| Send a chat message in the name of another user \|`
			`\| User \| Spoofing \| Stolen credentials might be used to login \|`
			`\| User Login \| Tampering \| Modify HTTP login header \|`
			`\| Login \| Denial of Service \| Flood server with login requests \|`
			`\| Login \| Spoofing \| Domain spoofing to impersonate server \|`
			`\| Database \| Information Disclosure \| SQL Injection \|`