Presentation
SIGN IN TO VIEW THIS PRESENTATION Sign In
CASSE: Targeted Threat Modeling for Data Management Libraries
DescriptionData management libraries (DMLs) such as HDF5, Zarr, and NetCDF are used heavily across domains. Despite their heavy usage, security of DMLs has been sparsely explored. Threat modeling is a method for analyzing the security of complex software systems; STRIDE is the most popular model used for evaluating security of software. In this study, we evaluate the application and effectiveness of STRIDE for DMLs. We identified three key shortcomings of STRIDE when applied to DMLs: the attack categorizations are often inapplicable, the attack categories provide little context, and current approaches do not analyze file structures used by DMLs. We propose CASSE as a novel threat modeling approach targeting DMLs to focus on these problems with a new attack taxonomy and including file structure diagrams. We evaluated CASSE by using it to model threats on three popular DMLs, HDF5, NetCDF, and Zarr. The application of CASSE to other DMLs is similar.
