.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

Threat Modeling: Uncover Security Design Flaws Using The STRIDE Approach

Posted By:      Posted Date: August 21, 2010    Points: 0   Category :ASP.Net

Whenever you build a new system you should consider how an in¬truder might go about attacking it and then build in appropriate defenses at design time.

Shawn Hernan, Scott Lambert, Tomasz Ostwald, Adam Shostack

MSDN Magazine November 2006

View Complete Post

More Related Resource Links

Security Briefs: A Follow-on Conversation about Threat Modeling


This article explores the use of threat modeling to address security concerns in your applications.

Michael Howard

MSDN Magazine September 2009

Security Briefs: A Conversation About Threat Modeling


Listen in on a chat between a developer and security pro that delves into some of the major Security Development Lifecycle (SDL) requirements we impose on product teams here at Microsoft

Michael Howard

MSDN Magazine May 2009

Security Briefs: Getting Started With The SDL Threat Modeling Tool


The Security Development Lifecycle (SDL) threat modeling tool helps you develop great threat models as a backbone of your security process. We'll show you how it works.

Adam Shostack

MSDN Magazine January 2009

Security Briefs: Reinvigorate your Threat Modeling Process


In this column the author outlines some approaches to threat modeling that can be employed by development teams of any size.

Adam Shostack

MSDN Magazine July 2008

Security Briefs: Threat Models Improve Your Security Process


Using threat models to drive your security engineering process helps prioritize the code review, fuzz testing, and attack surface analysis tasks.

Michael Howard

MSDN Magazine November 2008

Secure By Design: Your Field Guide To Designing Security Into Networking Protocols


If you were to build a new communications protocol from scratch, how would you address security? Here the authors take a look at that question and generate some valuable insights into secure protocols.

Mark Novak and Andrew Roths

MSDN Magazine September 2006

SSAS 2008 - Security Architecture Design?


Hi, I would like to know BEST way to design SSAS 2008 security architecture for my organization.

I have different data sources in SQL Server 2008 and those ETL store data into datawarehouse (dimension, fact) and then I create cube on that dw. What I want to do is BEST way to desgin SECURITY architecture to browse cube as per ORGANIZATION CHART.

Like we have different companies >>> divided into Division >>> SubDivisions >>> Business Stream >>> Region (i.e. west, east) >>> .....

For example if person has WEST REGION access than he can only see WEST region not the other region but he need access to correct COMPANY >> DIVISON >> SUBDIVISION >> BUSINESS STREAM >> REGION - WEST only.

Please someone can provide BEST possible solution/ideas to design this sort of SECURITY architecture. Thank You.

oops, security oversight - how to *correctly* design this?



here's the scenario... company has lots of existing reports that they pull from their own system and don't want to recreate them in their web app. Instead, I'm creating a way for them to manage uploading these reports (their system creates the pdf files, I just need to provide them the interface to upload/manage them, and of course the user facing interface to retrieve them). 

I thought I had it all worked out until I realized that even though using my interface (the web app) users will only ever see the reports they are allowed to see, there is currently nothing stopping a user from directly downloading a report file they are not supposed to if they know the path and file name.

Example folder structure on server for the uploads:


so, only users that have a matching clientID associated with their accounts should be able to access the files within the folder matching that clientID... and user accounts *can* have multiple clientID's associated with their account. I have no problem make this happend within my web UI, but again, if a user knew the actual path, they could access other client's reports, which obviously is ver

Sending Passwords by email Security threat?


Having spent considerable amount of time in ASP.NET security community I would like to share this.

There are three ways of resetting and changing passwords explained at

Microsoft ASP.NET site

Step 1: Helping Users Recover Lost Passwords
Step 2: Changing Passwords
Step 3: Allowing Administrators to Change Users' Passwords

In step 1 and step 2 end user passwords are sent by an email.

In Step 3: functionality is explained where administror changing the password and sending through email msg. Please refer "I encourage those readers interested in this functionality to become more familiar with the code and try extending the functionality to include sending an email to the user whose password was changed.


Is Sending passwords by emial secure enough or best security password at all?

I have implemented functionality where Admin sending passwords to end users by changing once in 3 months. End users expressed their views that sending passwords by email is not secure. 

When there is security threat in sending passwords by email, Microsoft security experts should not suggest emailing passwords in above

odd approach to dynamicdata and poor page/code design


I have a gridview (that sits above a goup of formview usercontrols on a page) whose datasource returns a list of table names (10 or so, datakeys are id and tablename) and some other values from a table and populates the gridview with a select column and a few other details. 
The formview usercontrol has a property that sets the datasourceid and these are done on the apsx. On select in the gridview, the page posts back and tells the appropriate formview usercontrol, based on a giant switch statement, to databind and turn visible.

In the page_init, all formview usercontrols have their formviews enabledynamicdata for the appropriate table name.

All formviews start in edit mode (per client).  The switch will also takes the id from the gridview select and loads a small list of links ot the right of the visible formview that point to other tables with details about the table displayed in the formview.  These links pass a querystring paramater of another table name to a popup that runs a switch on page init, using the table name to dictate the datasource for a single formview (with 10 or so LinqDataSources on the aspx), binds and opens in edit mode.  Seting this on init allows the formview to properly edit, etc.

Here is how a user sees it.  Homepage, choose an "area"  This takes you to a page that loads a gridv

Need help on a simple design approach


Hi All,

I have the following problem: I need to draw a cube on a webform, using asp.net 4.0, similar to a rubik's cube in appearance only. The cube needs to be 3 dimensional, and if the user clicks on a certain part of the cube (quadrant) it needs to be able to change color and redirect to another webform - that is all, no solving or rotating of the cube is included. As you know, the rubik's cube has 9 squares/quadrants/ on each side, 3 sides for a 3 D objects making up for 27 squares...

So my question is do you have to go down to basic math and use coordinates to draw each of the 27 quadrants of the cube, change the backcolor and add an onclick event to each one to redirect or is there a more polished solution via webforms or silverlight or other technology out there? Please share if you have had a similar problem.


design strategy to overcome a server side control that can be manipulated by the client - (Security


Ok so we have a dot net aspx app whereby we have some server side button controls which in some states may be disabled

However per Internet Explorer a user could  go to the developer tools and change / delete the disabled property of the button and then click the button to fire the action event.

What would be the best recommended strategy to prevent this.

many thanks

Abstract Factory Design in C# , Vb.NET

Provide an interface for creating families of related or dependent objects without specifying their concrete classes

Prototype Design Pattern in C#. Vb.NET

Specify the kind of objects to create using a prototypical instance, and create new objects by copying this prototype

Adapter Design Pattern in C#, VB.NET

Convert the interface of a class into another interface clients expect. Adapter lets classes work together that couldn't otherwise because of incompatible interfaces.

Singleton Design Pattern in C#, Vb.NET

Ensure a class has only one instance and provide a global point of access to it.
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend