Glossary

Threat Modeling

Threat modeling is thinking like an attacker to find weaknesses - before you build something, figure out how it could be broken.

What is Threat Modeling?

Structured process for identifying security threats, vulnerabilities, and countermeasures for a system.

Why Should You Care?

Finding security issues during design is far cheaper than fixing them after deployment.

Is your business exposed?

Real-World Example

A STRIDE analysis of a new application identifies authentication weaknesses that are fixed before development.

How to Protect Against Threat Modeling

  1. 1.

    Integrate threat modeling into SDLC

  2. 2.

    Train developers on threat modeling techniques

Related Terms

Stride, Security Design, Risk

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices