User:CSteipp (WMF)/DataFlowDiagram VE & Parsoid

From mediawiki.org

This is an example of a simple data flow diagram, showing the interactions between VisualEditor in the user's browser, the MediaWiki api, Parsoid, and the various MediaWiki data stores.

  • Processes and running code are surrounded by rounded boxes
  • Arrows show a flow of data
  • Dotted lines are drawn around components that share a trust boundary

For threat modeling, at each place that an arrow crosses a dotted line (14 times in this example), the developers should think about ways the functionality can be abused. Using STRIDE or CAPEC may be useful prompts to think about common attack patterns.

Retrieved from "https://www.mediawiki.org/w/index.php?title=User:CSteipp_(WMF)/DataFlowDiagram_VE_%26_Parsoid&oldid=1115140"