Tag: Threat Modeling

How Architectural Decisions Impact Threat Modeling and Enterprise IT Security

In threat modeling, various methods can be obtain an overall picture of an application's vulnerabilities and the various mitigation measures. Almost all available methods are based on the fact that a digital system is first designed by its architecture. This usually includes all known components within an application or IT system, how they are interconnected, and where trust boundaries lie. Early decisions about the architecture can therefore have a major impact.

Understanding How to Mitigate Security Threats and Risks with Threat Modeling

In the field of security of web applications and mobile apps, threat modeling is a method that can be considered primarily as a means of performing deliberate risk management. There are many ways to identify and assess threats. Although the techniques differ: The basic principle is always to use them to identify the risks to an application or IT system and, more importantly, to agree on what those risks are.