Threat Modeling - Past Present Future

Threat Modeling: Past, Present and Future

Application Threat modeling is a structured and methodical approach that allows you to identify potential threats to applications, classify them by risk, and prioritize mitigation efforts based on the technical and business impact these threats pose to your organization, should they be carried out. Threat modeling is rapidly gaining momentum and in this post, we[…]

ThreatModeler vs Microsoft TMT - Microsoft threat modeling tool

Comparing ThreatModeler to Microsoft Threat Modeling Tool (TMT)

Recently, several requests have been made by members of the security community asking that MyAppSecurity provide a comparison between our product offering, ThreatModeler, the industry’s first automated, collaborative, scalable, and repeatable threat modeling solution, and Microsoft’s TMT, Microsoft threat modeling tool, which was released in April of 2014. Even though the methodologies and functional designs[…]

Successful Threat Modeling Practice - Indicators of Success from Threat Modeling

5 Characteristics of a Successful Threat Modeling Practice

Our past blog posts have covered why organizations need to implement threat modeling and make it an ongoing process, versus treating it as a one-time exercise, and also how IT executives, along with other key stakeholders, benefit from a scalable and repeatable threat modeling practice. Over the past few years a handful of methodologies and[…]

Threat Modeling for CISOs - Reasons Why CISOs Need Threat Modeling

4 Key Reasons Why CISOs Need Threat Modeling

A recent article by CSO magazine highlights key findings from CISOs (Chief Information Security Officers) on how threat modeling helps eliminate blind spots and more complex threat scenarios in their application risk profile. It also provided detail as to how various stakeholders benefit from a threat modeling process that not only identifies vulnerabilities, but also[…]