wird in neuem Tab geöffnet
E-Medium
Learning Threat Modeling for Security Professionals
Verfasser:
Suche nach diesem Verfasser
Shostack, Adam (Verfasser)
Mehr...
Jahr:
2019
Verlag:
LinkedIn
Mediengruppe:
EMedien
Vorbestellbar:
Ja
Nein
Voraussichtlich entliehen bis:
Download
Zum Download von externem Anbieter wechseln - wird in neuem Tab geöffnet
| Standorte | Status | Vorbestellungen | Frist |
|
Standorte:
|
Status:
Verfügbar
|
Vorbestellungen:
0
|
Frist:
|
|
Standorte:
|
Status:
Verfügbar
|
Vorbestellungen:
0
|
Frist:
|
In the twenty-first century, no one doubts the importance of cybersecurity. Threat modeling is where it starts. Threat modeling is a framework for thinking about what can go wrong, and the foundation for everything a security professional does. This training course provides an overview of the traditional four-question framework for (1) defining what you're working on, (2) discovering what can go wrong, (3) deciding what to do about it, and (4) ensuring you've done the right things in the right ways for the systems you're delivering. Instructor Adam Shostack also reviews the STRIDE model for identifying six types of threats: spoofing, tampering, repudiation, information disclosure, denial of service, and elevation of privilege. Using a simple case study-a billing system for a media server that serves ads-Adam shows how to apply the principles and find security and privacy problems so the developer can include appropriate configurations and controls as part of the operational design and rollout.
Keine Rezensionen gefunden.
Mehr...
Jahr:
2019
Verlag:
LinkedIn
Aufsätze:
Zu diesem Aufsatz wechseln
Suche nach dieser Systematik
Suche nach diesem Interessenskreis
Beschreibung:
00:41:41.00
Suche nach dieser Beteiligten Person
Sprache:
Englisch
Mediengruppe:
EMedien