BSides Vancouver 2015 - Bob Fruth - Threat Modeling in the Age of Connectivity to Everything

Threat Modeling! Many of us have heard of it, some of us have done it, and some have even done it effectively. And others haven't. Attack surface continues to grow. Complexity has increased from single user systems to simple web applications to complex software systems running businesses end-to-end to your new SmartTV/Fridge/Car. How can you sort out the interfaces you care about versus the interfaces an attacker cares about? One approach is to threat model. In this talk Bob, a software industry veteran, will discuss why you should leverage threat modeling within your software development life cycle and he will provide tried and tested threat modeling approaches to successfully realize the greatest benefits.