ModSecurity Breach

ModSecurity Blog

« Honeypot Scan of the Month 31 results are in! | Main | Security patterns repository »

Threat modeling information, links, and a free tool

Unless you know what you are protecting, from whom, and why you are going to have a very tough time protecting it. Just as I was researching threat modeling for a chapter of my book, this thread happened on the web application security mailing list. A lot of useful information and insightful opinions were exchanged over the course of few days. Then Microsoft released a free threat modeling tool announced several months ago. If I've interested you in the subject, here is a list of links to some public papers on threat modeling. Update: A video interview Frank Swiderski (the author of the free tool and the Thread Modeling book) is available at channel9 .

Calendar

November 2010
Sun Mon Tue Wed Thu Fri Sat
1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30

Feeds

Atom Feed

Search

Categories

Recent Entries

Archives