Some Thoughts On Threat Modelling presented at KiwiCon 2009

by Peter Gutmann (University of Auckland ),

Tags: Security

Summary : This talks looks at the topic of threat modelling, not so much in terms of, well, threat modelling, but how it can help shape the assumptions we make about the types of threats that we're facing. Starting with some notable examples of (fatally) incorrect assumptions made during historical threat modelling exercises, it looks at some more recent failures and failure patterns that DFD-based threat modelling can help identify. While none of the threats discussed are particularly novel, the formal threat-modelling process provides a more rigorous approach than the usual "try this one and see if it works". PCI-DSS will be mentioned (but only briefly).