Exercise 1: Assets System asset What is … ? Which language construct expresses … ? Actor (in some cases) ERIS, Submit team composition using ERIS (IS) use case
System boundary Business asset Security criterion Risk Impact Event Submit team composition; specifically team composition which is transferred Integrity of team composition Attacker intercepts transfer of team composition (changes team composition and registers changes in ERIS) due to unsecure transfer channel and thus harms the team composition by negating its integrity, thus leading to not allowance of the intended composition during the game Harms teams composition (it becomes not correct) Negates integrity of team composition Intended composition not allowed during games Attacker intercepts transfer of team composition (changes team composition and registers changes in ERIS) due to unsecure transfer channel (Business) use case Security criterion
(use case with stereotype
<<security criterion>>) A combination of constructs used
to express event and impact Impacts
(use case with stereotype
<<impact>>) A combination of constructs used
to express threat and vulnerability 1 Attack method Intercept transfer of team composition (including change team composition and Register changes in ERIS) Vulnerability Unsecure transfer channel Threat agent Threat Attacker intercepts transfer of team composition (changes team composition and registers changes in ERIS) Attacker Risk Risk reduction treatment Security Use secure communication requirements Make team composition not readable Control − Misuse cases Vulnerability (use case with
stereotype <<vulnerability>>) Misuser A combination of misuser and
misuse case using
communication link − − (Security) use case
(use case with stereotype
<<security requirement>>) − − 2 Exercise 2:
Security risk definition
3 Mitigation of security risk
4