# Threat Modeling Terminology

## Entity

In threat modeling, this refers to an actor (user, external service, smart contract, etc.) that interacts with the system.

## Asset

This refers to a valuable resource (tokens, data, etc.) that needs to be protected.

## Entry Point

This refers to a point (API, UI, contract function, etc.) where external entities can access or influence the system.

## Scenarios

This describes potential attack or threat situations in the form of scenarios.

{% content-ref url="pol" %}
[pol](https://bearmoon.gitbook.io/bearmoon/tm/pol)
{% endcontent-ref %}

{% content-ref url="dapp" %}
[dapp](https://bearmoon.gitbook.io/bearmoon/tm/dapp)
{% endcontent-ref %}