Stats
Actions
Tags
From code-abyss
Threat modeling (STRIDE/PASTA/LINDDUN), zero-trust identity, IAM/SSO/MFA/PAM, compliance frameworks (SOC2/PCI/HIPAA/GDPR), DLP, privacy engineering, and security control design.
How this skill is triggered — by the user, by Claude, or both
Slash command
/code-abyss:architecting-securityThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
> 架构是预防层,不是补丁。先建模再写代码,先定边界再开 API。控制必须可证据化。
架构是预防层,不是补丁。先建模再写代码,先定边界再开 API。控制必须可证据化。
| 意图 | 秘典 | 核心 |
|---|---|---|
| 威胁建模 | threat-modeling | STRIDE / PASTA / LINDDUN / DFD / Attack Tree |
| 身份与零信任 | identity-and-zero-trust | IAM / SSO / MFA / Kerberos / PAM / Conditional Access |
| 合规与证据 | compliance-and-evidence | SOC2 / PCI / HIPAA / GDPR / ISO27001 / DLP / 隐私工程 |
| 场景 | 用 | 不用 |
|---|---|---|
| 新系统设计 / 新攻击面引入 | ✅ STRIDE + DFD | — |
| 重大架构变更(鉴权、数据流、信任边界) | ✅ 重新建模 | — |
| 引入 PII / PHI / PCI 数据 | ✅ LINDDUN + 合规映射 | — |
| 上线前安全门禁 / 客户安全问卷 | ✅ 控制矩阵 + 证据 | — |
| 已有架构无变更 | ❌ | 用现有控制即可 |
| 仅 bug 修复 / 样式调整 | ❌ | 走 analyzing-security |
| 渗透实施层面 | ❌ | 用 securing-systems |
威胁建模 (STRIDE/PASTA/LINDDUN)
→ 控制设计 (preventive / detective / responsive 三层)
→ 实现 (代码、IaC、policy-as-code)
→ 验证 (渗透 / 红队 / 控制测试)
→ 证据留痕 (日志 / 审计 / 合规映射)
每环必须可回答「这控制对应哪条威胁?这威胁缓解到什么残留水平?谁验收?」
| 决策点 | 选项 A | 选项 B | 判据 |
|---|---|---|---|
| 鉴权协议 | SAML 2.0 | OIDC | 企业内部 SSO → SAML;移动/SPA/API → OIDC |
| MFA 强度 | TOTP / Push | FIDO2 / WebAuthn | 高价值账号、抗钓鱼 → FIDO2 强制 |
| 特权访问 | Standing privilege | JIT + Approval | 生产/敏感 → JIT;运维便利 → Standing 必有补偿 |
| 合规起步 | SOC 2 Type I | Type II | 客户问卷应付 → I;正式审计 → II(6-12月观察期) |
| 数据脱敏 | 假名化(可逆) | 匿名化(不可逆) | 业务侧仍需关联 → 假名化 + KMS;统计/共享 → 匿名化 |
| 跨境传输 | SCC | BCR | 偶发场景 → SCC;跨国集团内部 → BCR |
api-design.mdnpx claudepluginhub telagod/code-abyss --plugin code-abyssDesign security architecture covering authentication, authorization, data protection, and threat models. Use when building security-critical systems.
Designs or migrates to a zero trust security architecture where no user, device, or network is trusted by default. Based on NIST SP 800-207 and Google BeyondCorp.
Design and implement zero-trust architecture to authenticate and authorize all access, eliminating trust based on location.