tmnpy.dsl.requirement.SecurityProperty
- class tmnpy.dsl.requirement.SecurityProperty(confidentiality: Property = Property.NONE, integrity: Property = Property.NONE, availability: Property = Property.NONE, authenticity: Property = Property.NONE, non_repudiation: Property = Property.NONE, authorization: Property = Property.NONE)
Determine what are the security properties associated with an element, specifically Confidentiality, Integrity, Availability, Authenticity, Non-Repudiation, and Authorization. This helps set prioritization of elements in a threat model as well as provides more granularity on evaluating threats.
SecurityProperty has a 1-1 match with
tmnpy.dsl.requirement.STRIDE(). See each property for more information.- Parameters:
- confidentialitystr, default None
Confidentiality requirement for the element. Valid value are: NONE, LOW, HIGH. Case-insensitive.
- integritystr, default None
Integrity requirement for the element. Valid value are: NONE, LOW, HIGH. Case-insensitive.
- availabilitystr, default None
Availability requirement for the element. Valid value are: NONE, LOW, HIGH. Case-insensitive.
- authenticitystr, default None
Authenticity requirement for the element. Valid value are: NONE, LOW, HIGH. Case-insensitive.
- non_repudiationstr, default None
Non-Repudiation requirement for the element. Valid value are: NONE, LOW, HIGH. Case-insensitive.
- authorizationstr, default None
Authorization requirement for the element. Valid value are: NONE, LOW, HIGH. Case-insensitive.
- Attributes:
authenticityAuthenticity requirement.
authorizationAuthorization requirement.
availabilityAvailability requirement.
confidentialityConfidentiality requirement.
- info
integrityIntegrity requirement.
non_repudiationNon-Repudiation requirement.
- __init__(confidentiality: Property = Property.NONE, integrity: Property = Property.NONE, availability: Property = Property.NONE, authenticity: Property = Property.NONE, non_repudiation: Property = Property.NONE, authorization: Property = Property.NONE) None
Methods
__init__([confidentiality, integrity, ...])Attributes
Authenticity requirement.
Authorization requirement.
Availability requirement.
Confidentiality requirement.
infoIntegrity requirement.
Non-Repudiation requirement.