Threat modeling : designing for security /

The author details how to build better security into the design of systems, software, or services from the outset. Readers will explore various threat modeling approaches, find out how to test their designs against threats, and learn effective ways to address threats that have been validated at Micr...

Full description

Saved in:
Bibliographic Details
Main Author: Shostack, Adam (Author)
Format: Electronic eBook
Language:English
Published: Indianapolis, IN : John Wiley and Sons, [2014]
Subjects:
Online Access: Full text (Wentworth users only)
Local Note:ProQuest Ebook Central
Description
Summary:The author details how to build better security into the design of systems, software, or services from the outset. Readers will explore various threat modeling approaches, find out how to test their designs against threats, and learn effective ways to address threats that have been validated at Microsoft and other top companies. Systems security managers will find tools and a framework for structured thinking about what can go wrong. Software developers will appreciate the jargon-free and accessible introduction to this essential skill. Security professionals will learn to discern changing threats and discover the easiest ways to adopt a structured approach to threat modeling. The book provides a unique how-to for security and software developers who need to design secure products and systems and test their designs as well as explains various threat modeling approaches, such as asset-centric, attacker-centric and software-centric. --
Physical Description:1 online resource (xxxiii, 590 pages) : illustrations
Bibliography:Includes bibliographical references (pages 543-565) and index.
ISBN:9781118822692
1118822692
1118810058
9781118810057
9781394177516
1394177518
Access:Unlimited Users and Download Restrictions may Apply, VLEbooks Unlimited User Licence. Available using University of Exeter Username and Password.
Language:English.
Source of Description, Etc. Note:Print version record.