Threat Modeling for Mobile Health Systems
HC3 Threat Briefing – Threat Modeling for Mobile Health Systems
Please see below the HHS Health Sector Cybersecurity Coordination Center (HC3) threat brief. This brief focuses on Threat Modeling for Mobile Health Systems and covers the following topics:
- Introduction
- Threat Modeling Overview
- S.T.R.I.D.E
- S.T.R.I.D.E: Spoofing
- S.T.R.I.D.E: Tampering
- S.T.R.I.D.E: Repudiation
- S.T.R.I.D.E: Information Disclosure
- S.T.R.I.D.E: Denial of Service
- S.T.R.I.D.E: Elevating Privileges
- Authentication Threats
- Authorization Threats
- Privacy Threats
- Audit and Logging Threats
- References
- Questions
- Related Resources & News
- Potential Terror Threat Targeted at Health Sector – AHA & Health-ISAC Joint Threat Bulletin
- New Cybersecurity Policies Could Protect Patient Health Data
- CyberWire Podcast: PHP flaw sparks global attack wave
- Health-ISAC Hacking Healthcare 3-14-2025
- HSCC Aiming to Identify Healthcare Workflow Chokepoints
- New Healthcare Security Benchmark Highlights Key Investment Priorities and Risks
- Are Efforts to Help Secure Rural Hospitals Doing Any Good?
- CISA cuts $10 million annually from ISAC funding for states amid wider cyber cuts
- 2024 Health-ISAC Discussion Based Exercise Series After-Action Report
- Cobalt Strike takedown effort cuts cracked versions by 80%