home.aspx

 
.

THREAT MODELING TO REDUCE REAL SOFTWARE SECURITY RISK

Application security risk management is about identifying key threats, implementing countermeasures, and validating your defenses are robust. It is technique often used just prior to testing; however, it has value from requirements gathering all the way through to application construction and deployment. Threat modeling helps you understand risk and communicate the pros and cons of defensive measures to both technical and business staff.