Threat Modeling the Trenches to the Clouds (RSA Conference 2017)
What wisdom percolates from building threat modeling practices across four organizations? This presentation will draw from hundreds of students, years of coaching, 100 formal trainings and 1000s of threat models. This presentation will draw upon experience gained in the trenches of the battle to reduce design errors that is often fought with threat modeling. Conclusions may overturn cherished beliefs.
Detailed Presentation :
(Source : RSA USA 2017)
Speaker :
Brook S.E. Schoenfield
Brook S.E. Schoenfield is the Author of Securing Systems: Applied Security Architecture and Threat Models(CRC Press, 2015). He is the Principal Architect for product security at Intel Security Group. He provides strategic technical leadership, training and mentoring for 75 security architects. He is a founding member of IEEE’s Center for Secure Design and is a featured security architect at the Bletchley Park Museum of Computing. He is the originator of Baseline Application Vulnerability Assessment (BAVA), Just Good Enough Risk Rating (JGERR), Architecture, Threats, Attack Surfaces, and Mitigations (ATASM) and developer-centric security. He contributed to Core Software Security (CRC Press, 2014), and co-authored “Avoiding the Top 10 Security Design Flaws” (IEEE, 2014).
Discover & Compare 1000+ Cyber Security Products (It's Free!)
FireCompass is an AI Assistant for Cyber Security Decision Making. Discover & Compare 1,000+ Cyber Security Products. Grab your FREE Account Now (For a Limited Time ONLY).
Comments