Structural vulnerability (computing)

In computing, a structural vulnerability is an IT system weakness that consists of several so-called component vulnerabilities. This type of weakness generally emerges due to several system architecture flaws.

An example of a structural vulnerability is a person working in a critical part of the system with no security training, who doesn’t follow the software patch cycles and who is likely to disclose critical information in a phishing attack.{{cite web|title=KTH {{!}} Holistic Quantitative Threat Modeling & Attack Simulation {{!}} Robert Lagerström|url=https://www.kth.se/profile/robertl/page/holistic-quantitative-threat-modeling-and-attack-simulation?l=en|website=www.kth.se|accessdate=15 November 2017}}