What does STRIDE stand for in threat modeling?

In threat modeling, STRIDE refers to six categories of security threats used to categorize and reason about risks systematically. The canonical expansion is Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege. This exact phrasing is why that option is the best match: it uses the standard terms, including Information Disclosure (not Data Disclosure) and Elevation of Privilege (not Privilege Elevation). The other choices differ only in wording or order, but they don’t align with the widely adopted STRIDE names. Knowing STRIDE helps you map attacker goals to concrete threats— impersonating users, altering data, denying accountability, leaking information, taking down services, or obtaining higher access.