Threat Modeling for the Future | Video Interview with Adam Shostack

Threat modelling in DevOps boils down to four simple questions, according to Adam Shostack: What are we working on? What can go wrong? What do we do about it? Did we do it well?

In this interview, he explains how to use threat modeling to anticipate threats to the finished application before development gets started. He is author of the book, Threat Modeling for Security, president of security consultancy and training firm Shostack + Associates, and an early thought leader around threat modelling for cyber security. He’s also developed an elevation of privilege card game—click here for description and links on where to buy them.

Was this article helpful?
0 out of 0 found this helpful

Articles in this section

White Papers
Read our white papers to find useful information about software development in the IoT era, where devices must not only function with impeccable quality and safety but also remain resilient to cyber-attacks.
Product Sheets
Read our datasheets and company briefs to gain quick insights into our solutions, products, and integrations, including their capabilities, benefits, and supported environments.
TalkSecure
Topics relating to DevSecOps, application security testing (AST), binary analysis, product security, software assurance and others.
X