Detailed Thread Modeling Threat Modeling Is Quickly Becoming A Popular Technique Used To Assess The Security Posture Of An Application'S Architectural Components. But Is There A Way To Perform Such An presented at SOURCE Boston 2008

by Krishna Raja, Nish Bhalla,

Tags: Security Risk Development

Summary : A traditional threat model is an effective tool for determining the threats that pose a risk to the architectural components of an application. But what if we wish to enumerate the threats that face the developmental components? Detailed Threat Modeling is an approach that speaks to the development staff by examining the underlying object model of an application. In this talk, Nischal Bhalla and Krishna Raja of Security Compass explain how detailed threat modeling works, its benefits, and how it can be implemented by presenting a case study.