CPSTRIDE: A Threat Modeling Framework for Cyber-Physical Systems
摘要
Cyber-physical systems requires threat models that account for cyber and physical vulnerabilities alike. We present the CPSTRIDE framework, which extends the classic STRIDE model with a novel Cyber-Physical Flow Diagram and updated Security Property and Threat definitions. We demonstrate CPSTRIDE’s utility by modeling threats beyond STRIDE’s capabilities, and employ LLM assistance to identify threats in an additive manufacturing context.