Threat modeling has become one of the top security analysis methodologies that Microsoft's developers use to identify risks and make better design, coding, and testing decisions. This book provides a clear, concise explanation of the threat-modeling process, describing a structured approach you can use to assess the security vulnerabilities for any application, regardless of platform. Software designers and developers discover how to use threat modeling during the specification phase of a new project or a major revision-from verifying application architecture to identifying and evaluating threats and designing countermeasures. Test engineers discover how to apply threat-modeling principles when creating test plans to verify results. It's the essential, high-level reference for software professionals responsible for designing, refining, and maximizing the security features in their application architecture.

Swiderski, a software security engineer, and Snyder, a security industry consultant and software engineer, explain concepts and goals for threat modeling, a structured approach for identifying, evaluating, and mitigating risks to system security, and explain how to use threat modeling to analyze a system from the adversary's point of view. Application scenarios are used to illustrate how threat modeling concepts can improve upon the built-in security features of a system regardless of development environment. The book is of interest to security process managers, program managers, architects and developers, and software testers.
Annotation ©2004 Book News, Inc., Portland, OR (booknews.com)

Delve into the threat modeling methodology used by Microsoft's) security experts to identify security risks, verify an application's security architecture, and develop countermeasures in the design, coding, and testing phases. (Computer Books)