Advanced Threat Modeling

Published September 9th, 2008 Under Architecture, Coding | Leave a Comment

In this presentation, John Steven talks about modeling security threats as a way to discover, understand and counteract threats while designing the system architecture. John presents threat modeling through examples focusing on authentication, authorization and session management.

John Steven is a Technical Director with Cigital, Inc. and a founding member of the company’s Office of the CTO. His experience spans consulting, distributed systems architecture, operating systems, and software quality and security research. Mr. Steven holds a B.S. in Computer Engineering and an M.S. in Computer Science from Case Western Reserve University.

Watch this video on Infoq.com

Comments

Categories

• Architecture
• Coding
• Configuration Management
• General
• Open Source Tools
• Services
• Software Testing
• User Interface

Popular Tags

AJAX clojure continuous integration DSL eclipse ESB flex functional testing glassfish google app engine grails groovy GWT hibernate hudson j2ee java javafx javascript jboss jpa jruby JSF junit jvm maven mobile naked objects netbeans OSGi performance realtime refactoring REST roo ruby scala seam security selenium SOA spring TDD tomcat unit testing

Search

Feeds

• RSS
• Twitter