An Approach to Web Application Threat Modeling


SecurityPub » Program Management » An Approach to Web Application Threat Modeling

Written by Akash Shrivastava on 05/09/2008 Source InfosecWriters

The aim of this paper is to identify relevant threats and vulnerabilities in the Web Application and build a Security Framework to help in designing a secure Web Application.

Threat modeling is a procedure for optimizing Internet Security by identifying vulnerabilities and then defining countermeasures to prevent or mitigate the effects of these threats to the system.

The following details of the threat modeling process are covered:

Asset Identification
Vulnerability Identification
Prioritizing Assets
Threat Impact Analysis
Threat Response Plan





Read the complete paper at InfosecWriters

Broken link?
Similar Links:
A Practical Application of SIM/SEM/SIEM Automating Threat Identification

Sorry, you don't have permission to post. Log in, or register if you haven't yet.

Please login or register.