Threat Modelling should be part of your developing process

Our colleague Simon Kölsch on his personal blog:

[…] a useful approach to building more secure software is constructing an explicit threat model and updating it on a regular basis. Instead of creating a giant threat diagram start by trying to apply one of the STRIDE frameworks threats to your system. Choosing a threat modelling card of the day may help familiarize yourself with the vocabulary.

Continue to external content



Please accept our cookie agreement to see full comments functionality. Read more