Loading…
Hands-on threat modeling /
Threat modeling (also known as architecture risk analysis) is the primary security analysis task performed during the software design stage. It is a structured activity for identifying and evaluating application threats and related design flaws. You use the identified flaws to adapt your design, or...
| Call Number: | Libro Electrónico |
|---|---|
| Format: | Electronic Video |
| Language: | Inglés |
| Published: |
[Sebastopol, California] :
O'Reilly Media, Inc.,
[2022]
|
| Edition: | [First edition]. |
| Subjects: | |
| Online Access: | Texto completo (Requiere registro previo con correo institucional) |
| Summary: | Threat modeling (also known as architecture risk analysis) is the primary security analysis task performed during the software design stage. It is a structured activity for identifying and evaluating application threats and related design flaws. You use the identified flaws to adapt your design, or scope your security testing. Threat modeling allows you to consider, identify, and discuss the security implications of user stories in a structured fashion, and in the context of their planned operational environment.This threat modeling crash course will teach you to perform threat modeling through a series of exercises, where our trainer will guide you through the different stages of a practical threat model based on a migration from a “classical” web application to a combination of AWS hosted microservices. In this workshop you will learn an iterative and incremental threat modeling method that you can integrate in your development and deployment pipeline. This method allows you to consider security issues at your application and component levels. Exercises are built upon a fictional Acme Hotel Booking (AHB) system, where we migrate a legacy client-server system towards a cloud based, micro service stack using AWS services. |
|---|---|
| Physical Description: | 1 online resource (1 video file (1 hr., 35 min.)) : sound, color. |
| Playing Time: | 01:35:00 |