OWASP
Update Threat_Modeling_Cheat_Sheet.md
Updated Line 66 changing non-repudiation for Accountability. Technically it wasn't incorrect, but STRIDE is the opposite of CI4A so the document should reflect this.
You're A Rockstar
Thank you for submitting a Pull Request (PR) to the Cheat Sheet Series.
:triangular_flag_on_post: If your PR is related to grammar/typo mistakes, please double-check the file for other mistakes in order to fix all the issues in the current cheat sheet.
Please make sure that for your contribution:
- [ ] In case of a new Cheat Sheet, you have used the Cheat Sheet template.
- [ ] All the markdown files do not raise any validation policy violation, see the policy.
- [ ] All the markdown files follow these format rules.
- [ ] All your assets are stored in the assets folder.
- [ ] All the images used are in the PNG format.
- [ ] Any references to websites have been formatted as
[TEXT](URL) - [ ] You verified/tested the effectiveness of your contribution (e.g., the defensive code proposed is really an effective remediation? Please verify it works!).
- [ ] The CI build of your PR pass, see the build status here.
If your PR is related to an issue, please finish your PR text with the following line:
This PR fixes issue #<REPLACE WITH ISSUE NUMBER>.
Thank you again for your contribution :smiley:
Can you please provide some source material? I did a quick search for CI4A and found very few results. Is this an industry accepted standard? I agree Accountability is much easier to understand but non-repudiation is used in STRIDE all the time so I'm not convinced it's better.
I am closing this because there is no activity in this PR for a long time
