Bird
0
0

Which of the following is NOT a category in the STRIDE threat model?

easy🧠 Conceptual Q3 of 15
Cybersecurity - Security Architecture and Design
Which of the following is NOT a category in the STRIDE threat model?
ATampering
BRepudiation
CDenial of Service
DPhishing
Step-by-Step Solution
Solution:

  1. Step 1: List STRIDE categories

    STRIDE includes Spoofing, Tampering, Repudiation, Information disclosure, Denial of Service, Elevation of privilege.

  2. Step 2: Identify which option is not in STRIDE

    Phishing is a social engineering attack, not part of STRIDE categories.

  3. Final Answer:

    Phishing -> Option D

  4. Quick Check:

    STRIDE excludes Phishing [OK]
Quick Trick: STRIDE = Technical threats, not social attacks [OK]
Common Mistakes:
MISTAKES
  • Assuming phishing is in STRIDE
  • Confusing social attacks with STRIDE categories
  • Mixing STRIDE with other threat models

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Cybersecurity Quizzes
Advanced Threat Protection - Sandbox environments - Quiz 8hard Compliance and Governance - SOC 2 compliance - Quiz 14medium Compliance and Governance - Risk assessment methodologies - Quiz 7medium Compliance and Governance - SOC 2 compliance - Quiz 8hard Compliance and Governance - Risk assessment methodologies - Quiz 6medium Compliance and Governance - Why compliance frameworks guide security - Quiz 9hard Emerging Security Topics - Supply chain security - Quiz 14medium Emerging Security Topics - Bug bounty programs - Quiz 5medium Emerging Security Topics - Bug bounty programs - Quiz 6medium Incident Response - Containment strategies - Quiz 9hard