Learning Threat Modeling for Security Professionals
Offered By: LinkedIn Learning
Course Description
Overview
Threat modeling helps security professionals understand what can go wrong—and what to do about it. Learn to use the four-question and STRIDE frameworks for threat modeling.
Syllabus
Introduction
- Develop secure products
- Why would you threat model?
- A simple approach to threat modeling
- What are we working on?
- What can go wrong?
- What are we going to do about it?
- Did we do a good job?
- Spoofing a specific server
- Tampering with a file
- Interlude: Scope and timing
- Repudiating an order
- Information disclosure
- Denial of service
- Elevation of privilege
- Expansion of authority
- Next steps
Taught by
Adam Shostack
Related Courses
Proactive Computer SecurityUniversity of Colorado System via Coursera Security in Office 365
Microsoft via edX Threat Detection: Planning for a Secure Enterprise
Microsoft via edX Cyber Threat Intelligence
IBM via Coursera Security Analyst Fundamentals
IBM via Coursera