pl | en
Logo

Archive

Return to 2010-02-09

Blog

Studium przypadku: o | Role of threat model | Address changed

Role of threat modeling at design time

2010-02-09 17:35

Threat modeling is a formalized analysis of a given system/applications from the attacker's point of view and the result is identification of higher risk areas. Thus it is possible to apply adequate security and the appropriate allocation of financial resources needed for this purpose.

Threat modeling process is based on identification of all possible entry points of the system and applications and then examining what methods can be used to break or bypassing the safeguards applied. The result of such analysis is needed not only the definition of security measures (including estimation of their levels) but also the identification of attack vectors on the basis of entry points of the system and applications.

Threat model includes

  • Identification of system/application resources
  • List of entry points which are interfaces that system/application uses and provides
  • Attack vectors describe methods and set of requirements in order to perform successful break-in.
  • Threat profiles - in general it is a set of possible attack methods that can be performed for a given target.
  • Trust levels that exist in the system on a basis of given roles in the system or given access rights or information classification.

Threat modeling requires full understanding of business logic and use case scenarios of a given system/application. Many of successful attack vectors can be performed by actors created by system engineers in unforeseen manner.

Thanks to threat model we can perform assessment of analyzed system or application. It allows taking right strategic business and technological decisions and simplifies risk management.

Our tools and experience play a decent role in this process because they assure fast model creation which lets our customers to react faster and in proper way. What's more, our role is not limited only to model creation - our customers can manage risk effectively and optimize security measures' cost by using our knowledge and experience. Not to mention fulfilling legal requirements and other regulations. Thanks to our pen-tests we can verify and update threat model.