Threat model (STRIDE)
This document is intentionally internal-only.
A STRIDE threat model lists attack surface and known gaps with target-close dates. Publishing it would hand attackers a roadmap. Industry-standard practice is to keep threat models strictly internal.
What we can share
Customer security reviews receive a summary of the controls described in this document via the HECVAT response. To request the relevant summary, contact [email protected].