WF-D-1 — Flood WebSocket engine to exhaust server connections
Component: Wallet Frontend. Mitigations: Separate port 8082; JWT required on first message; connection rate-limited by reverse proxy. Action: Configure reverse proxy connection limits
| Property | Value |
|---|---|
| Section | Denial of Service |
| Owner | operator |
Mapped Controls
| Control | Title |
|---|---|
| SID-HARD-02 | Input Validation and Injection Prevention |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md