论文信息 - Threat Modelling for Active Directory

Threat Modelling for Active Directory

This paper analyses the security threats that can arise against an Active Directory server when it is included in a Web application. The approach is based on the STRIDE classification methodology. The paper also provides outline descriptions of countermeasures that can be deployed to protect against the different threats and vulnerabilities identified here.

David Chadwick

[1] Rüidiger Grimm,et al. Threat Modelling for ASP.NET - Designing Secure Applications , 2004, Communications and Multimedia Security.

[2] Wouter Joosen,et al. Threat Modelling for Web Services Based Web Applications , 2004, Communications and Multimedia Security.

[3] Elisa Bertino,et al. Threat Modelling for SQL Servers - Designing a Secure Database in a Web Application , 2004, Communications and Multimedia Security.

[4] Steve Kille,et al. Using Domains in LDAP/X.500 Distinguished Names , 1998, RFC.

[5] Jeff Hodges,et al. Authentication Methods for LDAP , 2000, RFC.

[6] Wouter Joosen,et al. A Generic Architecture for Web Applications to Support Threat Analysis of Infrastructural Components , 2004, Communications and Multimedia Security.

[7] Tim Howes,et al. Lightweight Directory Access Protocol , 1995, RFC.

[8] Bart Preneel,et al. Threat Modelling for Security Tokens in Web Applications , 2004, Communications and Multimedia Security.

[9] Tim Howes,et al. Lightweight Directory Access Protocol (v3): Attribute Syntax Definitions , 1997, RFC.