Articles
| Open Access |
DOI: A THREAT MODEL FOR VOICE-BASED APPLICATIONS
Nafisa Yuldasheva , Tashkent University Of Information Technologies Named After Muhammad Al-Khwarizmi Tashkent, UzbekistanAbstract
This article provides an analysis of possible threats and risks in the implementation of voice-based applications. In particular, threat classification according to STRIDE (Spoofing, Tampering, Repudiation, Information disclosure, Denial of Service, Elevation of privileges) methodology, threat risk assessment according to DREAD (Damage Potential, Reproducibility, Exploitability, Affected Users, Discoverability) model and issues of taking protective measures against them are considered
Keywords
Confidentiality, authorization, threat model
References
Khan R. et al. STRIDE-based threat modeling for cyber-physical systems //2017 IEEE PES Innovative Smart Grid Technologies Conference Europe (ISGT-Europe). – IEEE, 2017. – С. 1-6.
Zhang L. et al. A risk-level assessment system based on the STRIDE/DREAD model for digital data marketplaces //International Journal of Information Security. – 2022. – С. 1-17.
Suprihanto D., Wardoyo R., Mustofa K. Determination of weighting assessment on DREAD model using profile matching //International Journal of Advanced Computer Science and Applications. – 2018. – Т. 9. – №. 10. – С. 68-72.
https://learn.microsoft.com/en-us/azure/security/develop/threat-modeling-tool-threats
5. 76. Tashev K.A., Fayziyeva D.S., Yuldasheva N.S., Bank tizimlarida zaifliklar va tahdidlar tahlili // “Muhammad al-Xorazmiy avlodlari” ilmiy amaliy va axborot-tahliliy jurnali. № 4 (26), 2023. -B. 218-223
6. Юлдашева Н.С., Холимтаева И.У., Банк тизимида содир этилган фирибгарликни техник усулларининг таҳлили // G.: “Educational Research in Universal Sciences”. ISSN: 2181-3515. VOLUME 1 | ISSUE 6 | November, 2022. -P. 158-162
Article Statistics
Copyright License
Copyright (c) 2024 Nafisa Yuldasheva
This work is licensed under a Creative Commons Attribution 4.0 International License.
Authors retain the copyright of their manuscripts, and all Open Access articles are disseminated under the terms of the Creative Commons Attribution License 4.0 (CC-BY), which licenses unrestricted use, distribution, and reproduction in any medium, provided that the original work is appropriately cited. The use of general descriptive names, trade names, trademarks, and so forth in this publication, even if not specifically identified, does not imply that these names are not protected by the relevant laws and regulations.