Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Trust Mapping #198

Open
wants to merge 7 commits into
base: develop
Choose a base branch
from
Open

Trust Mapping #198

wants to merge 7 commits into from

Conversation

mdoherty-axiom
Copy link

This first pull request partially addresses #197 by incorporating a high-level modeling technique Trust Mapping and 5 subtechniques (4 are mapping/relationship discovery techniques and 1 risk assessment technique).

  • Agent Trust Mapping examples:

    • Security managers, organizations, developers, review teams, software license holders

  • Decision Process Trust Mapping examples:

    • If certificate verification passed trust source, do not trust identity of user if only one factor of authentication occurred

  • Information Source Trust Mapping examples:

    • In attribute-based access control decisions are made based on information about the data being accessed (the source and trustworthiness of this effect system security), audit records, heuristics, user-behavior analytics

  • Software Source Mapping examples:

    • delivery methods (distribution networks), developers/organizations that made software, certificate creators, dependency repositories

@netfl0 netfl0 added this to the 0.17.0 milestone Apr 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
new-technique
Projects
None yet
Milestone
0.17.0
Development

Successfully merging this pull request may close these issues.
3 participants
@mdoherty-axiom @netfl0 @vikhari-axiom