Welcome to MSDN Blogs Sign in | Join | Help

March 2006 - Posts

Threat Modeling without Security Subject-Matter Expertise

With this release of the process and the accompanying tool, there were 4 high-level objectives we are trying to fulfill: Provide a consistent methodology for objectively identifying and evaluating threats to applications. Translate technical risk to business Read More...
Posted Thursday, March 16, 2006 10:32 PM by talhahm | 4 Comments

BETA2 NOW AVAILABLE!

BETA2 of Microsoft Threat Analysis & Modeling v2.0 (formerly codenamed “ACE Torpedo”) is now available for download here . This is a significant milestone for us in our efforts to help realize the full potential of threat modeling in helping software Read More...
Posted Monday, March 13, 2006 6:30 PM by talhahm | 4 Comments

[VIDEO] What is Microsoft Application Threat Modeling?

[ UPDATE ] The video has been updated slightly and the video link below has changed (old link won't work). The audio (particularly the sound effects and music were tweaked. [ UPDATE ] BETA2 is ready to go but unfortunately we're having some technical Read More...
Posted Friday, March 10, 2006 2:23 by talhahm | 3 Comments

Webcast

Recently I did a webcast on our methodology at the end of which I gave a sneak peak of the tool (one of the daily builds we had then working up to BETA2). This webcast is now available for offline viewing from here . BETA2 will be released early next Read More...
Posted Friday, March 03, 2006 6:35 PM by talhahm | 0 Comments

Intro to our methodology

I should have posted this earlier but Rocky has a great intro to our threat modeling methodology available here ... Thanks Rocky! Right now my team is busy getting ready for the launch of BETA2 of Threat Analysis & Modeling v2 (formerly codenamed Read More...
Posted Wednesday, March 01, 2006 7:07 PM by talhahm | 0 Comments
 
Page view tracker