Chapter 9. Stage 4: Risk Analysis

In this chapter:

Threat-Modeling Artifacts

What to Model

Building the Threat Model

The Threat-Modeling Process

Using a Threat Model to Aid Code Review

Using a Threat Model to Aid Testing

Key Success Factors and Metrics

If we had our hands tied behind our backs (we don’t) and could do only one thing to improve software security—threat modeling, better security code reviews, or better security testing—we would do threat modeling every day of the week. The reason is simple: when performed correctly, threat modeling occurs early in the project lifecycle and can be used to find security design issues before code is committed. This can lead to significant cost savings because issues are resolved early in the development lifecycle. ...

Get Security Development Lifecycle now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial