[15592] in cryptography@c2.net mail archive
threat modelling tool by Microsoft?
daemon@ATHENA.MIT.EDU (Ian Grigg)
Wed Jun 9 09:08:38 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 09 Jun 2004 12:31:59 +0100
From: Ian Grigg <iang@systemics.com>
To: cryptography@metzdowd.com
Has anyone tried out the threat modelling tool
mentioned in the link below, or reviewed the
book out this month:
http://aeble.dyndns.org/blogs/Security/archives/000419.php
"The Threat Modeling Tool allows users to create threat
model documents for applications. It organizes relevant
data points, such as entry points, assets, trust levels,
data flow diagrams, threats, threat trees, and vulnerabilities
into an easy-to-use tree-based view. The tool saves the
document as XML, and will export to HTML and MHT using
the included XSLTs, or a custom transform supplied by
the user."
"The Threat Modeling Tool was built by Microsoft Security
Software Engineer Frank Swiderski, the author of Threat
Modeling (Microsoft Press, June 2004)."
--
iang
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
