Threat modeling for security assessment in cyberphysical systems
Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop
An extensible pattern-based library and taxonomy of security threats for distributed systems
Computer Standards & Interfaces
| Hi-index | 0.00 |
Threat modeling at the design phase is one of the most proactive ways to build more secure software. Identifying and resolving potential security issues early avoids costly reengineering that occurs later in the development life cycle. However, traditional approaches to threat modeling require significant security expertise and the ability to think like an attacker—characteristics that not all software designers and engineers possess. This article describes a large software vendor's real-world experiences with threat modeling, including major challenges encountered, lessons learned, evolution of a threat-modeling approach, and a description of the company's current developer-driven approach.