Threat Modeling: Designing for Security

The only security book to be chosen as a Dr. Dobbs Jolt Award Finalist since Bruce Schneier's Secrets and Lies and Applied Cryptography! Adam Shostack is responsible for security development lifecycle threat modeling at Microsoft and is one of a handful of threat modeling experts in the world. Now, he is sharing his considerable expertise into this unique book. With pages of specific actionable advice, he details how to build better security into the design of systems, software, or services from the outset. You'll explore various threat modeling approaches, find out how to test your designs against threats, and learn effective ways to address threats that have been validated at Microsoft and other top companies. Systems security managers, you'll find tools and a framework for structured thinking about what can go wrong. Software developers, you'll appreciate the jargon-free and accessible introduction to this essential skill. Security professionals, you'll learn to discern changing threats and discover the easiest ways to adopt a structured approach to threat modeling.

Book contents:

  1. Dive in and Threat Model

  2. Strategies for Threat Modelling

  3. Finding Threats

  4. Stride

  5. Attack Trees

  6. Attack Libraries

  7. Privacy Tools

  8. Processing and Managing Threats

  9. Defensive Tactics and Technologies

  10. Trade-Offs When Addressing Threats

  11. Validating That Threats are Addressed

  12. Threat Modeling Tools

  13. Requirements Cookbook

  14. Web and Cloud Threats

  15. Accounts and Identity

  16. Human Factors and Usability

  17. Threats to Cryptosystems

  18. Bringing Threat Modeling to Your Organization

  19. Experimental Approaches

  20. Architecting for Success