Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Wednesday, March 1 • 09:00 - 10:30
Threat Modeling (Part 1)

Sign up or log in to save this to your schedule and see who's attending!

Learning objectives
  • Describe terminology used when threat modeling
  • Describe a process for threat modeling a system
  • Perform a threat model for some fictitious system
Overview

This is a very hands-on session. The session begins by describing the threat model process we use at Cigital. We will walk through an in-class example applying the process to identify potential flaws in a system. The class will then be broken up into small groups and we will spend the majority of the time building a threat model as a number of individual labs. This will be a pen and paper exercise with the instructor providing the necessary materials to the students.


Speakers
avatar for Andrew Lee-Thorp

Andrew Lee-Thorp

Senior Consultant, Cigital
Andrew Lee-Thorp is a security consultant with over 10 years of experience cutting his teeth in development from smart cards through to high-end servers systems. He currently works as a Consultant with Synopsys where he performs code reviews, architectural risk analysis, and Android testing. Andrew's strategic focus is in developing assessment tooling and improving Android testing capability within the company. Andrew holds a postgraduate degree... Read More →



Wednesday March 1, 2017 09:00 - 10:30
Room: Van Hamaele

Attendees (4)