Ebook1,013 pages15 hours

Threat Modeling: Designing for Security

Name: Threat Modeling: Designing for Security
Brand: Wiley
Rating: 4.4 (5 reviews)

By Adam Shostack

Rating: 4.5 out of 5 stars

4.5/5

()

Read preview

About this ebook

The only security book to be chosen as a Dr. Dobbs Jolt Award Finalist since Bruce Schneier's Secrets and Lies and Applied Cryptography!

Adam Shostack is responsible for security development lifecycle threat modeling at Microsoft and is one of a handful of threat modeling experts in the world. Now, he is sharing his considerable expertise into this unique book. With pages of specific actionable advice, he details how to build better security into the design of systems, software, or services from the outset. You'll explore various threat modeling approaches, find out how to test your designs against threats, and learn effective ways to address threats that have been validated at Microsoft and other top companies.

Systems security managers, you'll find tools and a framework for structured thinking about what can go wrong. Software developers, you'll appreciate the jargon-free and accessible introduction to this essential skill. Security professionals, you'll learn to discern changing threats and discover the easiest ways to adopt a structured approach to threat modeling.

Provides a unique how-to for security and software developers who need to design secure products and systems and test their designs
Explains how to threat model and explores various threat modeling approaches, such as asset-centric, attacker-centric and software-centric
Provides effective approaches and techniques that have been proven at Microsoft and elsewhere
Offers actionable how-to advice not tied to any specific software, operating system, or programming language
Authored by a Microsoft professional who is one of the most prominent threat modeling experts in the world

As more software is delivered on the Internet or operates on Internet-connected devices, the design of secure software is absolutely critical. Make sure you're ready with Threat Modeling: Designing for Security.

Skip carousel

Security

LanguageEnglish

PublisherWiley

Release dateFeb 12, 2014

ISBN9781118810057

Author

Adam Shostack

Related authors

Skip carousel

Related to Threat Modeling

Related ebooks

Skip carousel

Threat Hunting in the Cloud: Defending AWS, Azure and Other Cloud Platforms Against Cyberattacks
Ebook
Threat Hunting in the Cloud: Defending AWS, Azure and Other Cloud Platforms Against Cyberattacks
byAbbas Kudrati
Rating: 0 out of 5 stars
0 ratings
How to Measure Anything in Cybersecurity Risk
Ebook
How to Measure Anything in Cybersecurity Risk
byDouglas W. Hubbard
Rating: 4 out of 5 stars
4/5
Communication and Network Security: CISSP, #4
Ebook
Communication and Network Security: CISSP, #4
bySelwyn Classen
Rating: 0 out of 5 stars
0 ratings
Securing Critical Infrastructures
Ebook
Securing Critical Infrastructures
byProfessor Mohamed K. Kamara Ph.D.
Rating: 0 out of 5 stars
0 ratings
Cyber Breach Response That Actually Works: Organizational Approach to Managing Residual Risk
Ebook
Cyber Breach Response That Actually Works: Organizational Approach to Managing Residual Risk
byAndrew Gorecki
Rating: 0 out of 5 stars
0 ratings
Building Effective Cybersecurity Programs: A Security Manager’s Handbook
Ebook
Building Effective Cybersecurity Programs: A Security Manager’s Handbook
byTari Schreider, SSCP, CISM, CCISO, ITIL Foundation
Rating: 4 out of 5 stars
4/5
Security Engineering: CISSP, #3
Ebook
Security Engineering: CISSP, #3
bySelwyn Classen
Rating: 0 out of 5 stars
0 ratings
CISSP Exam Study Guide For Security Professionals: NIST Cybersecurity Framework, Risk Management, Digital Forensics & Governance
Ebook
CISSP Exam Study Guide For Security Professionals: NIST Cybersecurity Framework, Risk Management, Digital Forensics & Governance
byRichie Miller
Rating: 0 out of 5 stars
0 ratings
Software Development Security: CISSP, #8
Ebook
Software Development Security: CISSP, #8
bySelwyn Classen
Rating: 0 out of 5 stars
0 ratings
The Cyber Security Handbook – Prepare for, respond to and recover from cyber attacks
Ebook
The Cyber Security Handbook – Prepare for, respond to and recover from cyber attacks
byAlan Calder
Rating: 0 out of 5 stars
0 ratings
Transformational Security Awareness: What Neuroscientists, Storytellers, and Marketers Can Teach Us About Driving Secure Behaviors
Ebook
Transformational Security Awareness: What Neuroscientists, Storytellers, and Marketers Can Teach Us About Driving Secure Behaviors
byPerry Carpenter
Rating: 0 out of 5 stars
0 ratings
Alice and Bob Learn Application Security
Ebook
Alice and Bob Learn Application Security
byTanya Janca
Rating: 0 out of 5 stars
0 ratings
Introduction to US Cybersecurity Careers
Ebook
Introduction to US Cybersecurity Careers
byHenry Dalziel
Rating: 3 out of 5 stars
3/5
Python for Cybersecurity: Using Python for Cyber Offense and Defense
Ebook
Python for Cybersecurity: Using Python for Cyber Offense and Defense
byHoward E. Poston, III
Rating: 0 out of 5 stars
0 ratings
Cybersecurity First Principles: A Reboot of Strategy and Tactics
Ebook
Cybersecurity First Principles: A Reboot of Strategy and Tactics
byRick Howard
Rating: 5 out of 5 stars
5/5
Start-Up Secure: Baking Cybersecurity into Your Company from Founding to Exit
Ebook
Start-Up Secure: Baking Cybersecurity into Your Company from Founding to Exit
byChris Castaldo
Rating: 0 out of 5 stars
0 ratings
The Active Defender: Immersion in the Offensive Security Mindset
Ebook
The Active Defender: Immersion in the Offensive Security Mindset
byDr. Catherine J. Ullman
Rating: 0 out of 5 stars
0 ratings
The Cloud Security Ecosystem: Technical, Legal, Business and Management Issues
Ebook
The Cloud Security Ecosystem: Technical, Legal, Business and Management Issues
byRaymond Choo
Rating: 0 out of 5 stars
0 ratings
Fight Fire with Fire: Proactive Cybersecurity Strategies for Today's Leaders
Ebook
Fight Fire with Fire: Proactive Cybersecurity Strategies for Today's Leaders
byRenee Tarun
Rating: 0 out of 5 stars
0 ratings
Application Security Program Handbook
Ebook
Application Security Program Handbook
byDerek Fisher
Rating: 0 out of 5 stars
0 ratings
Cybersecurity and Third-Party Risk: Third Party Threat Hunting
Ebook
Cybersecurity and Third-Party Risk: Third Party Threat Hunting
byGregory C. Rasner
Rating: 0 out of 5 stars
0 ratings
CompTIA Security+ Study Guide with over 500 Practice Test Questions: Exam SY0-701
Ebook
CompTIA Security+ Study Guide with over 500 Practice Test Questions: Exam SY0-701
byMike Chapple
Rating: 0 out of 5 stars
0 ratings
Building an Intelligence-Led Security Program
Ebook
Building an Intelligence-Led Security Program
byAllan Liska
Rating: 5 out of 5 stars
5/5
The CISO Evolution: Business Knowledge for Cybersecurity Executives
Ebook
The CISO Evolution: Business Knowledge for Cybersecurity Executives
byMatthew K. Sharp
Rating: 0 out of 5 stars
0 ratings
You CAN Stop Stupid: Stopping Losses from Accidental and Malicious Actions
Ebook
You CAN Stop Stupid: Stopping Losses from Accidental and Malicious Actions
byIra Winkler
Rating: 0 out of 5 stars
0 ratings
11 Strategies of a World-Class Cybersecurity Operations Center
Ebook
11 Strategies of a World-Class Cybersecurity Operations Center
byKathryn Knerler
Rating: 0 out of 5 stars
0 ratings
A Convenient Guide to Starting You on Threat Modeling
Ebook
A Convenient Guide to Starting You on Threat Modeling
byBogomil Shopov
Rating: 0 out of 5 stars
0 ratings
Selling Information Security to the Board: A Primer
Ebook
Selling Information Security to the Board: A Primer
byAlan Calder
Rating: 0 out of 5 stars
0 ratings
EC-Council Certified Security Analyst Standard Requirements
Ebook
EC-Council Certified Security Analyst Standard Requirements
byGerardus Blokdyk
Rating: 0 out of 5 stars
0 ratings
Cyber Essentials: A Pocket Guide
Ebook
Cyber Essentials: A Pocket Guide
byAlan Calder
Rating: 5 out of 5 stars
5/5

Security For You

Skip carousel

Cybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity
Ebook
Cybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity
byDr. Erdal Ozkaya
Rating: 5 out of 5 stars
5/5
CompTIA Network+ Review Guide: Exam N10-008
Ebook
CompTIA Network+ Review Guide: Exam N10-008
byJon Buhagiar
Rating: 0 out of 5 stars
0 ratings
Cybersecurity For Dummies
Ebook
Cybersecurity For Dummies
byJoseph Steinberg
Rating: 4 out of 5 stars
4/5
Mike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601)
Ebook
Mike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601)
byMike Meyers
Rating: 5 out of 5 stars
5/5
Network+ Study Guide & Practice Exams
Ebook
Network+ Study Guide & Practice Exams
byRobert Shimonski
Rating: 4 out of 5 stars
4/5
CompTIA Security+ Study Guide: Exam SY0-601
Ebook
CompTIA Security+ Study Guide: Exam SY0-601
byMike Chapple
Rating: 5 out of 5 stars
5/5
How to Become Anonymous, Secure and Free Online
Ebook
How to Become Anonymous, Secure and Free Online
byAmy Awol
Rating: 5 out of 5 stars
5/5
How to Be Invisible: Protect Your Home, Your Children, Your Assets, and Your Life
Ebook
How to Be Invisible: Protect Your Home, Your Children, Your Assets, and Your Life
byJ. J. Luna
Rating: 4 out of 5 stars
4/5
Social Engineering: The Science of Human Hacking
Ebook
Social Engineering: The Science of Human Hacking
byChristopher Hadnagy
Rating: 3 out of 5 stars
3/5
Wireless Hacking 101
Ebook
Wireless Hacking 101
byKarina Astudillo
Rating: 4 out of 5 stars
4/5
The Hacker Crackdown: Law and Disorder on the Electronic Frontier
Ebook
The Hacker Crackdown: Law and Disorder on the Electronic Frontier
byBruce Sterling
Rating: 4 out of 5 stars
4/5
Hacking: Ultimate Beginner's Guide for Computer Hacking in 2018 and Beyond: Hacking in 2018, #1
Ebook
Hacking: Ultimate Beginner's Guide for Computer Hacking in 2018 and Beyond: Hacking in 2018, #1
byDexter Jackson
Rating: 4 out of 5 stars
4/5
Make Your Smartphone 007 Smart
Ebook
Make Your Smartphone 007 Smart
byConrad Jaeger
Rating: 4 out of 5 stars
4/5
Tor and the Dark Art of Anonymity
Ebook
Tor and the Dark Art of Anonymity
byLance Henderson
Rating: 5 out of 5 stars
5/5
CompTIA CySA+ Practice Tests: Exam CS0-002
Ebook
CompTIA CySA+ Practice Tests: Exam CS0-002
byMike Chapple
Rating: 0 out of 5 stars
0 ratings
Hacking : The Ultimate Comprehensive Step-By-Step Guide to the Basics of Ethical Hacking
Ebook
Hacking : The Ultimate Comprehensive Step-By-Step Guide to the Basics of Ethical Hacking
byKevin Clark
Rating: 5 out of 5 stars
5/5
The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers
Ebook
The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers
byKevin D. Mitnick
Rating: 4 out of 5 stars
4/5
CompTIA Network+ Practice Tests: Exam N10-008
Ebook
CompTIA Network+ Practice Tests: Exam N10-008
byCraig Zacker
Rating: 0 out of 5 stars
0 ratings
CompTIA Security+ Certification Study Guide, Fourth Edition (Exam SY0-601)
Ebook
CompTIA Security+ Certification Study Guide, Fourth Edition (Exam SY0-601)
byGlen E. Clarke
Rating: 5 out of 5 stars
5/5
Remote/WebCam Notarization : Basic Understanding
Ebook
Remote/WebCam Notarization : Basic Understanding
byJeannie Eunice Franks
Rating: 3 out of 5 stars
3/5
Codes and Ciphers - A History of Cryptography
Ebook
Codes and Ciphers - A History of Cryptography
byAlexander D'Agapeyeff
Rating: 4 out of 5 stars
4/5
Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601)
Ebook
Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601)
byDawn Dunkerley
Rating: 5 out of 5 stars
5/5
Hacking For Dummies
Ebook
Hacking For Dummies
byKevin Beaver
Rating: 4 out of 5 stars
4/5
The Cyber Attack Survival Manual: Tools for Surviving Everything from Identity Theft to the Digital Apocalypse
Ebook
The Cyber Attack Survival Manual: Tools for Surviving Everything from Identity Theft to the Digital Apocalypse
byNick Selby
Rating: 0 out of 5 stars
0 ratings
Violent Python: A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers
Ebook
Violent Python: A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers
byTJ O'Connor
Rating: 4 out of 5 stars
4/5
Hacking With Kali Linux : A Comprehensive, Step-By-Step Beginner's Guide to Learn Ethical Hacking With Practical Examples to Computer Hacking, Wireless Network, Cybersecurity and Penetration Testing
Ebook
Hacking With Kali Linux : A Comprehensive, Step-By-Step Beginner's Guide to Learn Ethical Hacking With Practical Examples to Computer Hacking, Wireless Network, Cybersecurity and Penetration Testing
byPeter Bradley
Rating: 5 out of 5 stars
5/5
How to Hack Like a Pornstar
Ebook
How to Hack Like a Pornstar
bySparc Flow
Rating: 5 out of 5 stars
5/5
The CompTIA Network+ & Security+ Certification: 2 in 1 Book- Simplified Study Guide Eighth Edition (Exam N10-008) | The Complete Exam Prep with Practice Tests and Insider Tips & Tricks | Achieve a 98% Pass Rate on Your First Attempt!
Ebook
The CompTIA Network+ & Security+ Certification: 2 in 1 Book- Simplified Study Guide Eighth Edition (Exam N10-008) | The Complete Exam Prep with Practice Tests and Insider Tips & Tricks | Achieve a 98% Pass Rate on Your First Attempt!
byComptia Ace5
Rating: 0 out of 5 stars
0 ratings
Cybersecurity All-in-One For Dummies
Ebook
Cybersecurity All-in-One For Dummies
byJoseph Steinberg
Rating: 0 out of 5 stars
0 ratings
Practical Lock Picking: A Physical Penetration Tester's Training Guide
Ebook
Practical Lock Picking: A Physical Penetration Tester's Training Guide
byDeviant Ollam
Rating: 5 out of 5 stars
5/5

Related podcast episodes

Skip carousel

Scale Out Cloud Storage
Podcast episode
Scale Out Cloud Storage
byThe Cloudcast
0 ratings
0% found this document useful
Dominique West: Security found me. [Strategy] [Career Notes]: Technical account manager Dominique West takes us on her career journey from engineering to cybersecurity.
Podcast episode
Dominique West: Security found me. [Strategy] [Career Notes]: Technical account manager Dominique West takes us on her career journey from engineering to cybersecurity.
byCyberWire Daily
100%
100% found this document useful
DevSecOps Essentials - Keith Hoodlet - ASW #224: How do you mature a team responsible for securing software? What are effective ways to prioritize investments? We'll discuss a set of posts on building talent, building capabilities, and what mature teams look like. Segment resources: - Visit ...
Podcast episode
DevSecOps Essentials - Keith Hoodlet - ASW #224: How do you mature a team responsible for securing software? What are effective ways to prioritize investments? We'll discuss a set of posts on building talent, building capabilities, and what mature teams look like. Segment resources: - Visit ...
byApplication Security Weekly (Video)
0 ratings
0% found this document useful
cybersecurity maturity model certification (CMMC) (noun) [Word Notes]
Podcast episode
cybersecurity maturity model certification (CMMC) (noun) [Word Notes]
byHacking Humans
0 ratings
0% found this document useful
Is enhanced hardware security the answer to ransomware? [CyberWire-X]
Podcast episode
Is enhanced hardware security the answer to ransomware? [CyberWire-X]
byCyberWire Daily
100%
100% found this document useful
Building an Insider Threat Program from Scratch: Kylie “KT” Boyle joins us in the latest episode of The New CISO, which is also the beginning of a new segment: The New CISO Foundations. Every security program is built off of a foundation; this episode will focus on KT’s mission and what...
Podcast episode
Building an Insider Threat Program from Scratch: Kylie “KT” Boyle joins us in the latest episode of The New CISO, which is also the beginning of a new segment: The New CISO Foundations. Every security program is built off of a foundation; this episode will focus on KT’s mission and what...
byThe New CISO
0 ratings
0% found this document useful
Cybersecurity Failure, Reboot Security Strategy, & Solving the Skills Gap - BSW #203: In the Leadership and Communications section, Cybersecurity Failure among Highest Risks, warns World Economic Forum, How to reboot a broken or outdated security strategy, A 21st Century Solution to Our Cybersecurity Skills Shortfall, and more! ...
Podcast episode
Cybersecurity Failure, Reboot Security Strategy, & Solving the Skills Gap - BSW #203: In the Leadership and Communications section, Cybersecurity Failure among Highest Risks, warns World Economic Forum, How to reboot a broken or outdated security strategy, A 21st Century Solution to Our Cybersecurity Skills Shortfall, and more! ...
bySecurity Weekly Podcast Network (Video)
0 ratings
0% found this document useful
Managing Your First Zero-Day Attack: On today’s episode, we are joined by Chris Wolski, the CISO of Port of Houston. He chats about job hunting, the aftermath of an attack and more. Becoming a CISO A returning guest, the last time Chris was on the show, he was unemployed. From...
Podcast episode
Managing Your First Zero-Day Attack: On today’s episode, we are joined by Chris Wolski, the CISO of Port of Houston. He chats about job hunting, the aftermath of an attack and more. Becoming a CISO A returning guest, the last time Chris was on the show, he was unemployed. From...
byThe New CISO
0 ratings
0% found this document useful
Cybersecurity and Hacking with Kevin Mitnick
Podcast episode
Cybersecurity and Hacking with Kevin Mitnick
byJill on Money with Jill Schlesinger
0 ratings
0% found this document useful
Big breaches (and how to avoid them): with Neil Daswani
Podcast episode
Big breaches (and how to avoid them): with Neil Daswani
byThe Changelog: Software Development, Open Source
0 ratings
0% found this document useful
"Jump-Start Your SOC Analyst Career" - Jarrett Rodrick - ESW #221: Jarrett Rodrick and Tyler Wall's new book, "Jump-start Your SOC Analyst Career," is meant to serve as a roadmap for those who wish to take their first steps into cyber security/SOC analyst. We discuss topics like introduction to investigative theory,...
Podcast episode
"Jump-Start Your SOC Analyst Career" - Jarrett Rodrick - ESW #221: Jarrett Rodrick and Tyler Wall's new book, "Jump-start Your SOC Analyst Career," is meant to serve as a roadmap for those who wish to take their first steps into cyber security/SOC analyst. We discuss topics like introduction to investigative theory,...
bySecurity Weekly Podcast Network (Video)
0 ratings
0% found this document useful
Breaking into the Cybersecurity Industry
Podcast episode
Breaking into the Cybersecurity Industry
byAfternoon Cyber Tea with Ann Johnson
0 ratings
0% found this document useful
Four Key Questions Every CISO Should Ask Their Board: Dr. Eric Cole of Secure Anchor joins us in this episode to talk about the misconceptions of what a CISO should really be. This episode focuses on the corporate side of cyber security and the line between a CISO and a security engineer.BACKGROUND Dr....
Podcast episode
Four Key Questions Every CISO Should Ask Their Board: Dr. Eric Cole of Secure Anchor joins us in this episode to talk about the misconceptions of what a CISO should really be. This episode focuses on the corporate side of cyber security and the line between a CISO and a security engineer.BACKGROUND Dr....
byThe New CISO
0 ratings
0% found this document useful
CyberWire Pro Interview Selects: Jaclyn Miller from NTT, Ltd.
Podcast episode
CyberWire Pro Interview Selects: Jaclyn Miller from NTT, Ltd.
byCyberWire Daily
0 ratings
0% found this document useful
Daily: DDoSing ISIS. Political hacks. Inspiration is an info op.: Daily: DDoSing ISIS. Political hacks. Inspiration is an info op.
Podcast episode
Daily: DDoSing ISIS. Political hacks. Inspiration is an info op.: Daily: DDoSing ISIS. Political hacks. Inspiration is an info op.
byCyberWire Daily
0 ratings
0% found this document useful
Cybersecurity Trends and Practices
Podcast episode
Cybersecurity Trends and Practices
byThe New CISO
0 ratings
0% found this document useful
Bonus: Afternoon Cyber Tea: IoT-Based Infrastructures
Podcast episode
Bonus: Afternoon Cyber Tea: IoT-Based Infrastructures
byCyberWire Daily
0 ratings
0% found this document useful
China's Cyber Capabilities: <p>In the latest episode of the Janes podcast we speak to Rob Dartnall, Director of Intelligence and CEO at Security Alliance, about the cyber aspects of China's 14th Five Year Plan (2021–2025) as well as discussing global cyber threat intelligence&nbs...
Podcast episode
China's Cyber Capabilities: <p>In the latest episode of the Janes podcast we speak to Rob Dartnall, Director of Intelligence and CEO at Security Alliance, about the cyber aspects of China's 14th Five Year Plan (2021–2025) as well as discussing global cyber threat intelligence&nbs...
byThe World of Intelligence
100%
100% found this document useful
Your First 90 Days As A New CISO: Initial Worries & New Challenges Going from consulting into a leadership position requires you to take on a new level of responsibility. You take that leap of having more permanence in the position but also now having to lead a team of other...
Podcast episode
Your First 90 Days As A New CISO: Initial Worries & New Challenges Going from consulting into a leadership position requires you to take on a new level of responsibility. You take that leap of having more permanence in the position but also now having to lead a team of other...
byThe New CISO
0 ratings
0% found this document useful
No Shirt. No Security. No Merger.: Episode available on CISO Series blog ( Sure, we'd like to merge with your company but geez, have you looked at your security posture lately? Uggh. I don't know if I could be seen in public with your kind let alone acquire your type. We're wary as...
Podcast episode
No Shirt. No Security. No Merger.: Episode available on CISO Series blog ( Sure, we'd like to merge with your company but geez, have you looked at your security posture lately? Uggh. I don't know if I could be seen in public with your kind let alone acquire your type. We're wary as...
byCISO Series Podcast
0 ratings
0% found this document useful
The Undocumented Web: scraping, private APIs, proxies and “alternative solutions”: What is the undocumented web? Scott and Wes dive into it, discussing APIs, faking, scraping, automation, proxies as well as tips and tricks for best practices. Kyle Prinsloo’s Freelancing & Beyond — Sponsor Kyle Prinsloo teaches you everything...
Podcast episode
The Undocumented Web: scraping, private APIs, proxies and “alternative solutions”: What is the undocumented web? Scott and Wes dive into it, discussing APIs, faking, scraping, automation, proxies as well as tips and tricks for best practices. Kyle Prinsloo’s Freelancing & Beyond — Sponsor Kyle Prinsloo teaches you everything...
bySyntax - Tasty Web Development Treats
0 ratings
0% found this document useful
Storytelling and Cybersecurity Awareness
Podcast episode
Storytelling and Cybersecurity Awareness
byAfternoon Cyber Tea with Ann Johnson
0 ratings
0% found this document useful
The Gravity of Cybersecurity: We spoke with Zinet Kemal and Jules Okafor about their experiences in the cyber security field.
Podcast episode
The Gravity of Cybersecurity: We spoke with Zinet Kemal and Jules Okafor about their experiences in the cyber security field.
bySmart Women, Smart Power
0 ratings
0% found this document useful
Who Is Your SOC Really For? - Ricardo Lafosse - CSP #43: Managing the volume of security events and continuous threat intelligence can be daunting for the largest of organizations. How do you increase the effectiveness of a Security Operations Center (SOC) and share this information across the organization...
Podcast episode
Who Is Your SOC Really For? - Ricardo Lafosse - CSP #43: Managing the volume of security events and continuous threat intelligence can be daunting for the largest of organizations. How do you increase the effectiveness of a Security Operations Center (SOC) and share this information across the organization...
byCISO Stories Podcast (Audio)
0 ratings
0% found this document useful
Cyber Ops 101 - The Intrusion Kill Chain: This podcast episode introduces you to the Cyber Security concept of the Intrusion Kill Chain, which contains the following seven steps: Reconnaissance Weaponization Delivery Exploitation Installation Command and Control Actions on Objective CCNA...
Podcast episode
Cyber Ops 101 - The Intrusion Kill Chain: This podcast episode introduces you to the Cyber Security concept of the Intrusion Kill Chain, which contains the following seven steps: Reconnaissance Weaponization Delivery Exploitation Installation Command and Control Actions on Objective CCNA...
byThe Broadcast Storm, with Kevin Wallace, CCIEx2 #7945 Emeritus
0 ratings
0% found this document useful
The Foolproof Way To Pass The CIPPE Exam In 2 Weeks
Podcast episode
The Foolproof Way To Pass The CIPPE Exam In 2 Weeks
byPrivacy Pros Podcast
0 ratings
0% found this document useful
Security Trends in 2023 and Beyond
Podcast episode
Security Trends in 2023 and Beyond
byAfternoon Cyber Tea with Ann Johnson
0 ratings
0% found this document useful
Cybersecurity: Current and Emerging Industry Priorities and Threats: Cybersecurity has only increased in importance as huge swaths of the workforce continue to work remotely. On this episode, two FINRA cybersecurity experts share how FINRA handled the transition and areas of focus for 2021. Plus, learn why you should think twice before trying to brush that piece of hair off your phone screen.
Podcast episode
Cybersecurity: Current and Emerging Industry Priorities and Threats: Cybersecurity has only increased in importance as huge swaths of the workforce continue to work remotely. On this episode, two FINRA cybersecurity experts share how FINRA handled the transition and areas of focus for 2021. Plus, learn why you should think twice before trying to brush that piece of hair off your phone screen.
byFINRA Unscripted
100%
100% found this document useful
Preventing Cyber Attacks with John Davis, Federal Chief Security Officer of Palo Alto Networks: From Senior Military Cyber Advisor at the Pentagon to VP and Federal Chief Security Officer at , is an experienced cyber security professional focused on educating the public on cyber threats and preventing the next national and international cyber...
Podcast episode
Preventing Cyber Attacks with John Davis, Federal Chief Security Officer of Palo Alto Networks: From Senior Military Cyber Advisor at the Pentagon to VP and Federal Chief Security Officer at , is an experienced cyber security professional focused on educating the public on cyber threats and preventing the next national and international cyber...
byMission Daily
0 ratings
0% found this document useful
#128 What's new with ISO 27001:2022?: The long-awaited update of ISO 27001 arrived in October 2022, having gone 9 years since its previous 2013 iteration. Needless to say, it was much overdue. The new 2022 version of the Standard includes 11 new controls and sees around 56 other controls...
Podcast episode
#128 What's new with ISO 27001:2022?: The long-awaited update of ISO 27001 arrived in October 2022, having gone 9 years since its previous 2013 iteration. Needless to say, it was much overdue. The new 2022 version of the Standard includes 11 new controls and sees around 56 other controls...
byThe ISO Show
0 ratings
0% found this document useful

Skip carousel

What Should You Know About Cloud Security Solutions?
HWM Singapore
Article
What Should You Know About Cloud Security Solutions?
Apr 9, 2021
3 min read
Staying Safe In The Cloud
NZBusiness and Management
Article
Staying Safe In The Cloud
Jul 22, 2019
4 min read
Cybersecurity Firm Fireeye Says Was Hacked By Nation State
TechLife News
Article
Cybersecurity Firm Fireeye Says Was Hacked By Nation State
Dec 12, 2020
3 min read
Five Lessons Of Cybersecurity The Public Sector Can Offer
The European Business Review
Article
Five Lessons Of Cybersecurity The Public Sector Can Offer
Jun 1, 2022
15 min read
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Inc.
Article
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Sep 21, 2016
Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate
2 min read
Vulnerability Assessments
PC Pro Magazine
Article
Vulnerability Assessments
Jan 7, 2021
3 min read
Cybersecurity: It Might Be The Small Stuff That Gets You
NZBusiness and Management
Article
Cybersecurity: It Might Be The Small Stuff That Gets You
Jan 16, 2020
2 min read
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster”
PC Pro Magazine
Article
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster”
Apr 10, 2022
6 min read
Top Eight Cybersecurity Predictions For 2022-23
NZBusiness and Management
Article
Top Eight Cybersecurity Predictions For 2022-23
Jul 20, 2022
3 min read
Why Leaders Need To Take A Risk-based Approach To Data Security
NZBusiness and Management
Article
Why Leaders Need To Take A Risk-based Approach To Data Security
Jul 21, 2021
5 min read
Everything You May Have Wanted to Know About Ethical/Whitehat Hackers
Techfastly
Article
Everything You May Have Wanted to Know About Ethical/Whitehat Hackers
Oct 21, 2020
5 min read
Building a Cybersecurity Fence
Residential Tech Today
Article
Building a Cybersecurity Fence
Jan 30, 2019
4 min read
“Vulnerability Hunters Tend To Be Cut From A Different Cloth. They Are Naturally In Quisitive”
PC Pro Magazine
Article
“Vulnerability Hunters Tend To Be Cut From A Different Cloth. They Are Naturally In Quisitive”
Jan 6, 2022
7 min read
How to Protect Your Small Business Against a Cyber Attack
Entrepreneur
Article
How to Protect Your Small Business Against a Cyber Attack
Feb 1, 2013
8 min read
Everything You Should Know About Cybersecurity Automation
Techfastly
Article
Everything You Should Know About Cybersecurity Automation
Jun 1, 2021
6 min read
Artificial Intelligence: The Next Step for Cybersecurity
Cannabis & Tech Today
Article
Artificial Intelligence: The Next Step for Cybersecurity
Apr 1, 2019
3 min read
Network monitoring 2022
PC Pro Magazine
Article
Network monitoring 2022
Feb 10, 2022
4 min read
For Cybersecurity Companies, It's Time to Shine
Entrepreneur
Article
For Cybersecurity Companies, It's Time to Shine
Dec 1, 2015
2 min read
Under Cyber Attack
Owner Driver
Article
Under Cyber Attack
Apr 16, 2020
9 min read
Hacker’s Manual
Linux Format
Article
Hacker’s Manual
Nov 17, 2020
1 min read
IoT Ransomware - How Healthcare Organizations Can Protect Themselves
Techfastly
Article
IoT Ransomware - How Healthcare Organizations Can Protect Themselves
Aug 2, 2021
5 min read
Protect Your Data
APC
Article
Protect Your Data
Jul 13, 2020
13 min read
Review of Cybersecurity Certification
Techfastly
Article
Review of Cybersecurity Certification
Feb 4, 2021
4 min read
Act, Don't React: A Leader's Guide to Cybersecurity
Rotman Management
Article
Act, Don't React: A Leader's Guide to Cybersecurity
Sep 1, 2019
9 min read
Web App Security
Linux Format
Article
Web App Security
Jun 29, 2021
8 min read
Supply Chain Attacks
TechLife
Article
Supply Chain Attacks
Aug 23, 2021
4 min read
A.i. Coding
Linux Format
Article
A.i. Coding
Aug 22, 2023
16 min read
How Artificial Intelligence Is Taking on Ransomware
TechLife News
Article
How Artificial Intelligence Is Taking on Ransomware
Jun 30, 2017
3 min read
How Artificial Intelligence Is Taking on Ransomware
AppleMagazine
Article
How Artificial Intelligence Is Taking on Ransomware
Jun 30, 2017
3 min read
Safe Hex
Linux Format
Article
Safe Hex
Jan 11, 2022
4 min read

Related categories

Skip carousel

Reviews for Threat Modeling

Rating: 4.4 out of 5 stars

4.5/5

5 ratings0 reviews

Book preview

Threat Modeling - Adam Shostack

�pAHdbook_preview_excerpt.html�}ۖǑ��ztW!��a��xY\�ž��ۆ��G��꺗?ɽ�v�a]˟�3&��(��e%�6�җmݮ��þX��Z7r+>l�]��/�,�FF��ۢj�|��"�\�})��-�(w��-��R>Z)�eͥ,� �e��^n��ʂ��m��Ŧ��]h>�ӏ�+��}��/��tIuW ��j��6�EՇ�(��K! ��OX�rS��vm�]�� O�!��^�)6�z#�]w�;��=)��=u��:��U�]O#e��A�y�.��a�=hT�ū�Y�uS�j��R�a��݄�WV|֭�*��{��=�'��7[��;pG�w��]�6��<�Ku�dww��C�l��BuB��<4�ʎ4�i[a�tݜ��CXl��}0�_�f��(��\܅��`�K�r�~�}�<��+�5��7 b�=�n��ӥ��5�y#;Q.��ʵ�W,�>�%��E�s�*!�ݑ��n�UCN��8��8��P�J^9={�V[5z�V-��/d��8��b"�^��g��J�TH��*ٿ�?H�0>]��;�R�}.j�rh{�g�߲Ϗ*�(��}W`'��m�"��Ex�s��ѯ��o�}��K�7s<��\�3͹�_V�>9�`��vf�,:�U��c׎�6��~��}f�A�qv�6!S. ȅ�]��m8��LW)��%��?@]>��=�։��w;��|C�ֽ˅�C[�2.Ӆo�E��y;��ϟ�;��.��wܘxb znG�A"G~0Y%_ފ�"�!Ϣ�>l�8N Y/�.��qL.��-$ ��+{p/U*��C]x\7�_XA�`�Ѷ�-��mS�EW��d�Pe~�|�J$|R��}��W� =� �ԌwQ�m�>��nE�i�0�2n��n��m��C|�~T��6�D�>�^O4�~�@�;��#�*�r��rV�T�@#�T�&]��!�=�[*e��[ѻ ��T��[Q�?��J��,�\�2,�$PO�.�HB}�<�^t9�2��W�gW-�=�+�o�ʰ��+7�m��e�W�}�<,J1��\��+1�O�?�adh�. r e?à�z�Q�r�!�O�+W&��&!�+9��z�02!@�f��׹X%C��N�<�2�˓]ZUrTu�2��X��s"�R�"G�-��>��A{��">�fԗ��v��$�)]�� N>%�}Y�A8�k�~E�N��*Ȳ�؜m��_��V��(W��2s;]�j�&�Z��f��3��Y�W��Z�#��E�e)Ƽ��/UGA�ϡ?7��rY�e��!%,/�j�4Ώ�u�V��5�8S�A�F�}w��i��N�f��4�o�+��~Q�}TBn5��bX,=��С�� ),S�|{4��B�U��aֳ,V[l�p��EՔ}:�T��'��T�F�}m�< Ֆ�F��.;��j�W�{=,��:W�sY�ݲ=P�o�7��6t�E��\_\__�L�� q�N�#-��+x�\��8b�M�6S��S/� :�;y��~�YsD��u|'^�_E��f�� F�.�� $+z!��F��n��^l�#2��+�ogY�}�_��F�c%�M��z��60m��,��ii��hd�t3��>2� ~��>�ι��ӷ�DO��d!�L��m)��N��nh�z0b�!e�KQ��o��U]�5t��S�M��̅�?� �M��8t��A@��+w�� 6ղ�y)a.&��&�nS8�C*�Df,C ��+��۟E�ʓ��0e�hbDwō��dL�Y�~��8�Vy�뮺��=��f�I��$Oq��P�2�wb:}U��3f/��9��/�\�'��D8��hAؖ/D�މkaR��͵�|��fL��(p �+ɸ)7� R%3�p��s��ˇ��n�u<&Mr'p��+4�P�� J�$8��q�l��Tr��xӳbٕ�Z 'p��|�*��ݯE�_#�0Bh&6W��s ��@��Q�$�� IO޳��$N�J.�>/�O6�]��}�]_�B5cU�x�v�ܙ��*��塬�r3���e�b�@*[�uʵ]m�g�r!+R��ل��N��m�3ʵx��)�Ӯ�C> G^�-�9��QF�!��=2��Jٝ^�hǯ\��:�t�?\� w��!�c[M��و)2o�'qb�q�� P�,�gq��ə��_Π�_@��%b��)��B䉹��9,�D��(�i[��<,��rLI�$< n��S&�Q��g��[� C��]u��ln��2J#�㉈ ��`�94��?��_<0+�%"�aB��`@��r}�G�\�ݡ�k�?d��/� U��$��'�g��O�9x3��d�g�:��,�� W�v��J��\`P��3(*A)Yf��Q��*v�X��vƇ��Q�RD�t/V�c�o`��)�3��11#�$��<�m�Hn�]f��Ӭ�i�� )�tryDvpA�ʃ^S�+�U�9��8��=��T��<{��> U�Ż.�^>}<�h%�W�T��|h�{~ �I�mO+ɍ�Q��{�F��J�2 �1��[#y6�h`̥1�0�v4�$;?�^��|%�E�Ud��V8�<�x��&i��yJ�F�w��4oߚ��}�� "ۖ�5F�o�x�OA��'��;�xTƘ�C��*ž픻�v��,r$��u�l�� q��h�@��T��w��&C�m��V�&u5�l�u�'�l�#��BQ�z�77��q�^Ae3X�x�I{�X��{��X|��W|Q~*��/�Q/��P^�˱盤�U{w"E^t2�[mW�Å�G�.�S��p��Nς�3(.qet4�d�4Ј3�yV��Ӈ4��K�E�J�UN��4F�� A��Rw�DIh�z�R��͈�#��J�]��ͤ0�o�|��6�\6w�ŵ�v�cA�e�y_>�-�Zj�ˇ�K�CZ��c�Q��t8�dk��\��%�� !I�qX�kI �#�B<)��l�&p �Qo��؜�Ia�f�V�L�zvc�P��;�e��k��9`�Doȗ�V�<��F��:��X��>��\�ғ��Z��j�Z�~�~�T��n^�L�\��?�� 0Ѥ�J�k�풰ϯ��J��N�C��|��69}�� f=~t��c��2�mi��j>�ހ��c�Dm��*�v��A(��Q��F�m�x!^��@J񕨗+�;%�X�� n�8i�]�yu��W�8=��p��<�SY�!u �Aƈ�'н�t��<��37�9F0ϼ^߈.�m��A6��1Ę�D�+?�vst��^NX �EX�� ~��/��{)�ϽE�`�~��]�� 'b�Q]��`��F��(�Cg�7 )�u@�(Y�P�:4�S�6�Ȧq��W�yh��Nt�\�R�Ļ��=�Q��Q��m�)�%��\��G~Ddq9�-0j�*�k|,fj�FVB�ь}�o�Qq{��R#<�+��;l�b@�M`�� j��`�8�Y�.�س|�h��g.��Νf�Q#~mS �"��|+�H�r��9͉��j��>+^�PH,�J�c��Xb�w��V;�,�Qև(=ш�-��S��%=�x�� 1��[ۜ3��$f2�!�@��LZ/D�|�?z�B�Y��?��#��%��O�i��&�1�q�z4V{C<^�� I,5��}I4��q��'�Qᗌ ��3Z/��Qi*��=��Z4��)�;E�ݶ��2�� Y��Q�5�*��ɞ�#�r8��z˰�̅�S�S�H.�%N�,��Ah�4o�a��ɓ��p��f��f��'��~R.��D�˲߉��6��':U��h�S�-4�`�Sj�%�$��{)�e��3y��TzI��9��^h[��j�W,��w��6�1D^Rw�3=��k��{C�9�1�Dt�!�%�nV�X�+v�v�E��`y9��&ʻ`Qe��|��)��@ğ ��.�,n��52��z� f�=�Ԉ�{��֕��0�'��O"��i��PIC��7�GS�pj��ګ��5#��28@Jߩ/j�+�lo��t59��\�z��{�pE��H��u��/q�|��v�#c�79��-�@�m�!Oʿ?��ʧ��U�kM��l��ʣ��UB9^Ч�� w�� &�Rm}��h��`�xr�>]��%M0!LqY��J��r=ۖu�U?�qwJ{:��8u��p�M�V��>˭$j�s��D1��0�`:D��!�Æ�%�H�R �ڵpiS� �Y}ڏGB�G$O�a.b.x��#�ι�c�S��]�-��@��T))O�S�� ~�=��,D�%Ts�/<�[�R��Y�3"�b��XF�وA��ja�UÃ0�n��Arw"B�'�B�IS�a�IS��羛y��(�iٞ�M2:�k��Bܜ�W*�*��?�Q�xk�� P�]^0�4<>y��K��L�(qtʧ��B�r/G��$D��:ݚvI��z?$�Ji��j3$��Ea�M�;�&�r�{3!f��5�o�=!�=��B1��b��wX��TR�d�K�a��{� !]�_f�L��c��9^D��W��Ҵ�{��I�1c"4��J ��j(��(Dd>��/-��e�z6�� #:�Z�r#Y�q܇7a�Ʒ��}u� �L�Pv(M�"�Q�|�?�Cs��W�n�Q� ��hT��Z��Jpq�r�A��ĽFӛ�Q.x��r�n c�c��-��8��l�k��ǌ��qF�b��{TL�+�3��I�EDĈ3� %�Y:Lwy0 3�^�z�1P �Evvo�1{�P��$x�.X��/�8�2Xͥ��X0�K%��>�mp�owm��nxN�QP��ln��cP��ݔd��"�K("7n�â��X�Z�.��ǹ�,� &�מ�Uٓ�Y�^%1��2-'�.3� ��l��!��ɳ$�o�L��FJ�h&k!��:/�P�^��>�� _�'35~�{�+��9"_�i�)nn^��.[��c�>��2�G��/Ӱ�#a��~?�*�L��j��ͫ>��UTh&��0=>��Y��X��͛��G/d�AT�M��n-��c�o41Riv�A��m��OEw:��_H+��c��go.��n�X�1P�Z9c1�� L|��V��]��h1�x�-JW\3�b �F��=e��﷎Зf�OWR.��a�k}�g?��<~�ο��g��<��P�,u�.H�uF@��>��e�|�uW� Df��%wR�"s�V��YL� Uv��la9}��u��r�Z�3Va��$>��G@HAY�C��2�!�ԩ!D�n�Ȫ�h��`}��7h��>"wQ��Hsz��N��w,*�g��<�eļ�w85��,TD4��D�="P'�x��[��X��hul�P4�ܡ�$YX��-Ҽ&�PU��h�P�W}tzO��L��R0Ȓ�W>�6�;!��5�B,�r cC��I�K�L*��- 9�B�!��6��vF� ��W��P��V|5x��n.~�,l^�ȏ!�a$4�K��9� Un��6+��(��<;QH�-Rą�a2!��U�Ɯ�YX߿��I��\ _I�p��"�� hp�`-��C�ʛ2�*W� i`p!�G��[��Y� �z�[u魂E(��.��&��P��1��Y_ͽ�� ?"G�)߬9�qu�-U��.׺xj��;�y�1��G'u��|�JK/�'0� +�_�bV�K8��V.z�)�9�Ba��)��G۽�r-nPq8$�=h M�[!ǝFQ5�1@D�'=�Y�me>�:�� rQ�N��Dt�|z�<��Q��ľ'�/g��Dg�a��돞��'��e�$Óѩ�ީ�Vgli�X��F��*y�n��B�v��u�R�0��5~ڷ�*6keD��ƶهjCG-��C��5�0�,�h3��uy[�,j6�?.��gLzc^2��DcG� ��Î��ݞ@��D��`��a�D��Ь�8M��B��-�j��'�J�vLw=X��;�˩��p��!��3(x��f�JMLќ&F4h�F�[5v\�bq�oV�F\��9S�Vq��7%��bh/��˪d��m(�6[��⸆z��u˶��~��p��8z��hK��.,��jn�aT&we0}wZ�4Cz9zs7:�^��@��w&�7h��I�pu��, �Ax@��l��j��eiqdh�Zbl�� `6�f�~�Q��h|��Q|E�Bm�z��*�+Zl�jܔ��,��qK+�c��G��:uW,>M��)Œa�0ߧ�$��{��H#��{�ʩW�G��a/��We�6�D6��G�U�0��e��l�Ħk��5_�� Hn��Idd�-7��oM��r]Ee��+��`�r^mN�& Q<�#[:�%2�5�JO�� G��B zAX�Kr֍��exn�,��H�n3�&7�,9&�덜�jOX��P��6��nH�z>g�3c��BbF��~�.ܛx^�3"��iֵe�H(�驯[��x!W��N7�Ɵz(��s89��Q�^{�� Ae<Ȥ^�-�U�r��mG+�>Џ�3��E��Ձ �~:�K��<'u�!w?�m�}ϣ�S��yx��SHAA�fK��2"VV�m.�]��Ԅm��g��s%��oi��-�o]Er��tp&��Ӫ�a$H��L੉@�׏r^?fzv�a��ͥp�� /G#i�V�l��`O��!��Nd�5�>U1�wW��un�r�[��4�Q)|~A6�fpd��+�c!�JDTr��PU��L�M ڶ$��)b6.)��[>n�ja��,�`��||�>��]9l��z��b�O��^��&r�v��k��AZ��EE0zw��v��!�ȑv�ڃȨ�jzNJ��&�7D�0�WWj�e�>��W��SMr�tm��Z�S�6� ��F��4ag%B��Hz/��nh�k�R'��J��3׾Ѭ��l��>z��䆏��Sk�!�N�V_��ī�E۫�/�z�g�I/��Yq�Z8H�x6��[K�pi�M1�+��+_L��M��ӊ��u^3�n��ѯ�Y��H�I:��٧E0�`AX$KHL~'*�� Am��s��H8�#K�o�N! ��ya�v�LU��|��4]K��G��&��LS�Io�#��yT��!��X��@�-�K�S��y�5k��g�T��<��X[�@��C�N��Z'�(��ū`3��[��\��e��V{ܗV`u�b��Weq�W�9�X��F��:K��N>��;~�}k��o�U�E;W� 9:.�5��78`�gK�x 1)�s�ϰ(9��P�M(1�Œ��`��N��53pIU%�3��Qe�-7�l�%BCz�R��^�r�V�5 ��[~��k�LLo?�~\��%��5��9aO �i��z%�#/P@"V^�T�MM�_��=�$]��Ob��l��H�l�&��'q�JH�bzQ[2��(g%��@mWf��/�&s'�v��g.�]ndRi�1�W;i$i_?4l�r30Mqs��wa�� AmV!�a�"� nL(k�Ѕ��SS��=�D��6=Zm��Qg�G�}��ǿ��,½ͮ1Sΐ�7wkބ"�m�$��w�2d�%6)vJ��&B�;�`j�O�B1H��1��*Zh�#E�Q��0�>j��p3�42�1�1pm4�B�CUq��2��bk�nx��@9�pBO�#C��O?� �3�Ovm�];�;�BE��F]ʹR�s�s�q� �ߠ:�!c� h,��/�c�b��v;�T�9�x��j��Q)F�kS�J�L��K��k��qڭ�@�h��=aԝ��?=��'��E��)��3g--�K�B��r�b�S��ճ��I��5D�xj�0�8��j�S��H�$rc,b'=/��g�Ҵ�$��ZJ��Ĥ.�� :��T��Ej�؊pN��e]�Yl ؆�x��ևp�:��zĠp�`�1A�� ^klR�ɫ4q#� ϫ��1�/� ��Mw�c��ܺ��h�۴�)z�u�k��k�H�$yo*��yc3fT��.*k��0v �0-��aC�x�o�H�ܔ��z��c5�ֺ��0�Т��s�$��on�}�Pk�$��S�RsS@�hk Id�FՂ��݀�(N͆��]g��~NHC9��%�W�.(��5��Ń��D�}y8R�L�� Պ}��c�&�)O�ѥ��x��}�{y��(�:�V�O�+!Z�eCe��K��~��/4�1"��󊘕��`��.��6�z;򅸹{0 �6$n��v28K16UA��F�aQ6��f1��Μ�cLK��x~jo�-�g�;f��XYk��!m�x�(�n��&FQ��H_��Xh��p�Z [�o{�q �n�;��+|l�� hܧm��*f�;`;�;q�[��^��k�� ЉǸ�>�_m�㛑��v��eJՎ�+�rc�k�r�4*��?�Zɻb��+�O֗>�ѳ6��혔zBz�OR�q�d��k��s�5h��D��;"1��}o,`��%䢶��P��/��7�sM�)T�=&{��ؙ��3�]q��$��$l-��jM-��ArZq��s�G�s�2��5�k�/s�� I�ze��a��Ĵ۾?E!�HU��8��W�M7�r��W:G�n�C��e_��Z��ay�IŁ�I��6��1-n�uĨ٬ʃP��S�{�N�y+�b��[�]E�F]�zt�7y �!�X�U��-�i��>�-��#�Z�yP��lD� c�4��D�n!85}�p��E�,b{�c��ր6��7)n�܂�VR�أ��q^�)�ݨv��i�(�X��N��};��A�4�Dt��P\Z��6�X*qmT�'c�K~X��z�d7��U��^�1�(yiI�>�k4eŔ�N�4H�b�D��F�e�E*��Fy2�\��2ބ�Y��zmy�s[I7!��Xf�_W5JL}u̝�p1��~��&h�l�S��F�zV7��F�uB�L��ۘ��1��ݳIHe�i�Şh�h��p�m�n��LnJ��{�C��b��+��md��`��X��/��&_��M��B��ԠP��Q��%�xo��/Dg �]�G�C�P*�}a^��kf��z{�?�c��ntk/� ��~rڿub��i��B��Y�E&�C��v�K��'�(��Fb8 ��9u�0��xg�`��8�ƙ��:1�C�'�]Ʀ��jx gqi*S��?on�3"O��p ��J��ř×J��Ѯw+��InQ ��T(er�zx��"��G*� �JmĖ��}I��8�A��}��% a��'��"6��b�6��GD̮dq�XE�S,�<��$A�6�_8�2��N��Ff�h��19|�Ԋ;ʝe\V6(C�� P��--dx,wrc�&�f��Ka�^��'�w��yO-�d�r=j6�c]�!1^��^�Ί_��|�E�c+��FE)��:EO�[땔�� P�тA��!l/�=�޲v��#d᱊Y� {$*}c�^sg�d��5b$&�W��5�]�Fȧ��$��ж^v�S��堜T�9�ey?��wV}�� C��ݥ�4��߼�B�:�K��Q�־�=�iUH�mД�"��h�U��bOJ�w��^��ΓO�|D��M��ey��4� 2��O}o�Z.@��f��*�� reI��X��k��W�%5Nȋ�Y�*�]��j]��ʓ��6��y�<�e�M�Wu�iZ�]�O�3[��<"h�ftӣ��Wo�\�D�(E��<�� 4��:mkр�:�N��3 �j�ܓY�%�t�B�9&FO!o��̦�ݠEQ�ʋ��]�j�΋G��.�'�ض��> �(l��e<� N��t�;� ��n�T��e�U_��50�хTci>Ko�1�G;]��r4�� ~%��C�.�)�@�k��Pu�0�cA(� |�9|��<�4�0T�欒R��Mە��-��yQ��5n,Y(��A�c+|5�2�e�K��bgf�k��*��h��Y��Ё�h�`��ؔ[<��y��D�ظӡ�Wjy��)�� n�q悴b |��U`�ن3��s��+4��~һ��1��Μ�/��%�Z��k@��ϔ��WA��輄>��;@T�O<��I?ue@_�^g՟��,~v�6Phv�Q�s4A3�?\6��9�3��1�Ut��Z�V�nN�)�:j�0#��aϊ<��h2F�b��3� &Ɉ�F��7��߬\@�o��U�r�wL� ��E�<1�cQ�-W�eR�� t��T��Xn[��mHl��r��N�̿Q�G��gw��C�xԖ'�ۧ��7̵r�Oc��E �p\�zZ76��|8�I�̅�U��"��o}�+�8��v�y��+d�O"� ��!�؊�*{6Y�+:�?�w��k��ݡ�Z�/��F$��p?�i�A��u�k$aMl��q|.@TW�h�,��H�g��q�8"A�_�0¨��5e�b�x��f5�꿡��x��+��Q��`��v�A=��C;�zI{*��e�,��9�k��]?VFĩ�WMmD 1�Tf1e��+��yBԙZjFs��AlmE��82[m�40�ǍҊ �&�ޔ&ֈFy�AƜM��Y)��i��Ǿ�&�k�"��v��G�ŻQN�WhF�g+j�FZn��'ly�P�_s�B�E��<�nﺇ�sd�8(�A��&v��ڨ� �+!zz��Jt3 �t�ѯ-��#�0G��:�D,/)>��L�F�� M�^��0Z��x��`�=r��U C�K�}u#��f"��/�}�i�g�ɹ��5=�Uh�C*�R$ۨ�EvH'��Ѝm?�B�R�%)�;�Tb�E"�,mq��lg�U�t��S.�{k�E�]Җ':�4߯��5[�5��؇xenk�˔�uRa7��VMl��/B��~K�i�6Иu�&!E⶝Z��X�3f#�n�F(Y�=El�5d��c�Y�pXjq�X#�y]��ݲ/�!�gO& k4�F +�e�֑��q� 5�F��m�#�N��A�&�,-58��0�\��a�"��э�P�cC}�F& �,��Oz&�@�/�/�IF"��I��̀�<�޳/u��X��֜/��)xޙ�XӸ=w[�ų�~&�NGj��\6 ��'��:�9uP�z��W��Ui�uN�#{��Gƶ��|θ*�2+C��K]��ѤB'�fE�%~�E��m��jM�_��c��~��8-{A��b�{О��GЗhw)+f�4�i�.MBS�Q>O��p��@y�?S��W�@��=��,��^�$�5��Ci ��65D��$0x�S ��)��_C>��:�v%'��/�'{3��%%c|*�hе�9c0/Ne��(��(H.Org��y��pD�{>��P��aP��^��޻E��L1a�U�'i��jS�F��7��S��ϋ�V��|ZJ�uh%C=��Liu�cc<��)I��X%��ǒ��/8c�J��&�+K��(�?{_��-�z� ��]��|mS3�v��Ln,��ϸ~b��mu�p�|$@O3h�>MGD"i�`��~'�E8��V6�M�㻥v=a�v>�]��yR]m��N�j�|�%�t\z& m� P�㤆R�*�ӝD8��2�R� x#�IT�@W��ߚ��<� �x�w��\�4��IXT�h3B��nk��C؍�a�p�c��2�ۛ]4l��9��AMdX�'\񹞝��gS)5'��q��#R��"�VG�C�)㊭1?�dYyD��U�a�6�κ�SEt�l��A�݉3�~�րi.��d�,wKeC�O��!+��1%h%|�xn��W��G6�a�}�-E�[z��g/��9��@�gǪ�l"�E�� L��q�@�Lﱱl�ʵ�n O�ik��@cr��hћ� �j�\�Qg=�kւ�X��Yw��0!';�3K��Φ@zA#�[+a�Ǘ�gE�8�}��{��*� �\��.��'�gj�Dʅ3�e�5Z�Ȧ��e?z��M�*^��Q�)��T�9>u~��W du�G��qz��"�G�88��x� g�l�n�Q��s{3{��$�8~:��DZ֝��>��)=�6lvB��F+��+��w�K�b��w5��!μt�M��$�e��L��]g��[8:ְ겦H6U�J��ܚͻS�M��Y_v��1ѝi)�X� Pd��e�QL;g>�L�ܬ4�,�J�ŝ��N}a��9_r�``�ro�G��H��F|��@�Z}��sm�G��x��1��s�v��6��O�&{�oG��8n"#G}K}�b��ߎ�z��y+E[��~��e�B<7��HT��DBj��t�~�Ǖ��-i��ҝ��i}�<�ܵ;у��9�ڽ.YcH��bF:��ՠ��(�Jf��u�E�6Z�v�sQ��\�d�*�=NA�ѓ�X�-g��t�q�a��v�[5A�LJWy��1SD|:u� ݤ�/��&H�aN�:s+��Q�=�PgvK��ׁ�R��i��:��K�u҇��;��@�b9z�8(�e-��ц��ly,��eO[��#Rx�1�;n��W󋟻�w��>�"�_��fZ��h�<�#��w�X%>#tK��J�5V>�&P��w)2�%A8>,�Dٷ��z� �z�E<��j L��Xn�7��G�Y��[�,ZL��w��c� �o��=o!�F��SBw�\=�:��+o }΄r��ܦu��έ��<�C�e��pݟ�0h3��C�v�󘾢 ;�=�C�_�`G3=��b`Ѡ[=��f!�+*��F\��Ĳ�Xe��%��g��!`�paLF��7-Z�ZN�?%��8��t��&��F�yꐏ�~��u��.U٪�_1�._|FB�n9-O�ж�J�XZ��4�e��ڨjUL��g��l��6��ܭՋ�M�Z�ä�;�JO?�'Q^!�w��`<�h[D�H��ظ43�8�Eڟ-3�&�h��8�Y��⿺A cY�1N��գN��qb��bq{��O1�S��h̏��/��_��|Y��f�.�=��z�@ѻ=��k��/��jMʹ�4��sQlm�1��%_W��i~O��Rge��Fl�3&��8�p�r��ti뙙6�S_��N��?X��u�.��6�A��#52B?x��TI:o.��{XS�ǈ_�y�8��A*Q�7>:/�j�AC��D�%��/{� f�s�)�X�cgƎR��حJ,��'�B-�sP�%.�!R�F��Dۥ�l�7.�T �OOf�}Q��6'K�n��6!g�`x[fWV}��37T�u�0��PV�X� 㖁Y2�D�3��8��2Y�gXt��d�T7Y�b0K !�״��m�Y��Y��'�!�M��C��u�%��M��j��|��!J8��4��R�g2��8w �߭c%b��5m�o̜�e�r�X%9*S�U2��s��%^�f<��v:0�h�D��v~Q��(�<�ڵų�%��K�Id�<�˒�7�gr݇yr�v6s��e��"��X&��G��q}ָ@k��(��HG�U��h��K�3C��j�B�/_�m�

Enjoying the preview?

Page 1 of 1

Threat Modeling: Designing for Security

About this ebook

Adam Shostack

Related authors

Related to Threat Modeling

Related ebooks

Security For You

Related podcast episodes

Related articles

Related categories

Reviews for Threat Modeling

What did you think?

Book preview

Threat Modeling - Adam Shostack