OWASP Threat Risk Modelig

Threat Risk Modeling

 [hide] 

• 1 Threat Risk Modeling
• 2 Performing threat risk modeling using the Microsoft Threat Modeling Process
  • 2.1 Identify Security Objectives
  • 2.2 Application Overview
  • 2.3 Decompose Application
  • 2.4 Identify Threats
  • 2.5 STRIDE
  • 2.6 DREAD
• 3 Alternative Threat Modeling Systems
  • 3.1 Trike
  • 3.2 AS/NZS 4360:2004 Risk Management
  • 3.3 CVSS
  • 3.4 OCTAVE
• 4 Conclusion
• 5 Further Reading
• 6 Appendix: Alternative open-source Risk Management tools
• 7 Reference