This is a very hands-on session. The session begins by describing the threat model process we use at Cigital. We will walk through an in-class example applying the process to identify potential flaws in a system. The class will then be broken up into small groups and we will spend the majority of the time building a threat model as a number of individual labs. This will be a pen and paper exercise with the instructor providing the necessary materials to the students.