Purpose of Threat Modeling
The purpose of Threat modeling is to identify, communicate, and understand threats and mitigation to the organization’s stakeholders as early as possible. Documentation from this process provides system analysts and defenders with a complete analysis of probable attackers’ profiles, the most likely attack vectors, and the assets most desired by the attacker.
Threat Modelling
Pre-Requisite: Threats
With the advancement in technology, it becomes easier day by day for hackers to gain access to sensitive data, disable applications, etc. Thus, Application Security has become a major concern. One method used to implement application security in the design process is through THREAT MODELLING.
Threats can be anything that can take advantage of a vulnerability to breach security and negatively alter, erase, or harm objects or objects of interest. Threat Modelling can be done at any stage of development but if done at the beginning it will help in the early determination of threats that can be dealt with properly.