Threat modeling to empower application risk management.
The Microsoft Threat Analysis & Modeling application was designed to allow non-security subject matter experts to enter already known information including business requirements and application architecture which is then used to produce a feature-rich threat model.
Along with automatically identifying threats, the tool can produce valuable security artifacts such as:
– Data access control matrix
– Component access control matrix
– Subject-object matrix
– Data Flow
– Call Flow
– Trust Flow
– Attack Surface
– Focused reports
· Microsoft .NET Framework Version 2.0
Please comments and give ratings. You may also report of broken or incorrect link using comments box below. Thanks!