How to make threat modeling work for you
Threat modeling helps us think about what could go wrong and how to prevent it, but often when building software, we can't figure out how to connect threat models to real-world development and prioritiesor we skip threat modeling altogether. Robert Hurlbut offers practical strategies for threat modeling for secure software design and explains how to apply risk management to deal with the threats.
Talk Title | How to make threat modeling work for you |
Speakers | Robert Hurlbut (Robert Hurlbut Consulting Services) |
Conference | O’Reilly Software Architecture Conference |
Conf Tag | Engineering the Future of Software |
Location | New York, New York |
Date | April 11-13, 2016 |
URL | Talk Page |
Slides | Talk Slides |
Video | |
Threat modeling helps us think about what could go wrong and how to prevent it, but often when building software, we can’t figure out how to connect threat models to real-world development and priorities—or we skip threat modeling altogether. Robert Hurlbut offers practical strategies for threat modeling for secure software design and explains how to apply risk management to deal with the threats. Robert briefly outlines threat modeling and its role in software architecture and software design, as well as definitions related to threat modeling. Robert then describes a typical threat-modeling session and demonstrates the steps in building a good threat model, including: