# Apply the PASTA threat model 
---

## Overview
- In this activity, you will practice using the Process of Attack Simulation and Threat Analysis (PASTA) threat model framework. You will determine whether a new shopping app is safe to launch.

- Threat modeling is an important part of secure software development. Security teams typically perform threat models to identify vulnerabilities before malicious actors do. PASTA is a commonly used framework for assessing the risk profile of new applications.

## Scenario    
- You’re part of the growing security team at a company for sneaker enthusiasts and collectors. The business is preparing to launch a mobile app that makes it easy for their customers to buy and sell shoes. 

- You are performing a threat model of the application using the PASTA framework. You will go through each of the seven stages of the framework to identify security requirements for the new sneaker company app.

## PASTA worksheet
**1. Define business and security objectives**
- The main goal of Stage I of the PASTA framework is to understand why the application was developed and what it is expected to do.

- First, review the following description of why the sneaker company decided to develop this new app. Buyers should be able to directly message sellers with questions. They should also have the ability to rate sellers to encourage good service. Sales should be clear and quick to process. Users should have several payment options for a smooth checkout process. Proper payment handling is really important because we want to avoid legal issues.

- **Note**: Stage I typically requires gathering input from many individuals at a business.

- **Description**: Our application should seamlessly connect sellers and shoppers. It should be easy for users to sign-up, log in, and manage their accounts. Data privacy is a big concern for us. We want users to feel confident that we’re being responsible with their information.

- **Make 2-3 notes of specific business requirements that will be analyzed.**
    - **Users can create member profiles internally or by connecting external accounts.**
    - **The app must process financial transactions.**
    - **The app should be in compliance with PCI-DSS.**
    
**2. Define the technical scope**
- In Stage II, the technological scope of the project is defined. Normally, the application development team is involved in this stage because they have the most knowledge about the code base and application logic. Your responsibility as a security professional would be to evaluate the application's architecture for security risks.

- For example, Application programming interface (API), Public key infrastructure (PKI), SHA-256, Structured query language (SQL)...

- **write 2-3 sentences (40-60 words) that describe why you choose to prioritize that technology over the others.**
    - **APIs facilitate the exchange of data between customers, partners, and employees, so they should be prioritized. They handle a lot of sensitive data while they connect various users and systems together.**
    - **However, details such as which APIs are being used should be considered before prioritizing one technology over another. So, they can be more prone to security vulnerabilities because there’s a larger attack surface.**

**3. Decompose application**
- During Stage III of PASTA, the objective is to analyze how the application is handling information. Here, each process is broken down.

- For example, one of the app's processes might be to allow buyers to search the database for shoes that are for sale. 

![image.png](attachment:image.png)

**4. Threat analysis**
- Stage IV is about identifying potential threats to the application. This includes threats to the technologies you listed in Stage II. It also concerns the processes of your data flow diagram from Stage III.

- For example, the apps authentication system could be attacked with a virus. Authentication could also be attacked if a threat actor social engineers an employee.

- **List 2 types of threats that are risks to the information being handled by the sneaker company's app.**
    - **Injection attacks, Session Hijacking**
    
**5. Vulnerability analysis**
- Stage V of PASTA is the vulnerability analysis. Here, you need to consider the attack surface of the technologies listed in Stage II.

- For example, the app will use a payment system. The form used to collect credit card information might be vulnerable if it fails to encrypt data.

- **List 2 types of vulnerabilities that could be exploited.**
    - **Lack of prepared statements, Broken API token**

**6. Attack modeling**
- In Stage VI of PASTA, the information gathered in the previous two steps are used to build an attack tree.

![image-2.png](attachment:image-2.png)

**7. Risk analysis and impact**
- PASTA threat modeling is commonly used to reduce the likelihood of security risks. In Stage VII, the final goal is to implement defenses and safeguards that mitigate threats.

- **List 4 security controls that you have learned about that can reduce the chances of a security incident, like a data breach.**
    - **SHA-256, incident response procedures, password policy, principle of least privilege**

---