Application Threat Modeling

Threat modelling has a structured approach that is far more cost-efficient and effective than applying security features in a haphazard manner without knowing precisely what threats each feature is supposed to address. With a random “shotgun” approach to security, it is not possible to know when the application is “secure enough”, or the areas where the application is still vulnerable.

Threat modelling consists of understanding the adversary’s view of the system, characterising security strengths, and determining and investigating threats. Used effectively, threat modelling can find security strengths and weaknesses, discover vulnerabilities, can help shape the application design and reduce risks inline with your company’s security objectives.

The main objectives of threat modelling are to:

: Understand the threat profile of a system

: Shape application design to meet your organisation’s security objectives

: Discover vulnerabilities and make trade-offs during key engineering decisions

: Reduce risks of security issues arising during development and operations

AppSecure Labs’ approach to threat modelling involves gathering information on application design and functionality through scheduled meetings with development teams and through design documentation.

An application threat model involves the following phases:

Identify security objectives

Clear objectives help focus the threat modelling activity and determine how much effort to spend on subsequent steps. This can be aligned with company security policy or to meet compliance and legal requirements.

Create an application overview

Itemising an application’s important characteristics and actors to help identify relevant threats. Using simple diagrams and tables to document the architecture of an application, including subsystems, trust boundaries and data flow.

Decompose your application

Decompose the application architecture, including underlying network and host infrastructure design, to create a security profile of the application. The aim of the security profile is to uncover the vulnerabilities in the design, implementation and deployment configurations.

Identify threats

Identify threats relevant to the application scenario and context. Keeping the goals of an attacker in mind, and with the knowledge of architecture and potential vulnerabilities, identify the threats that could affect the application.

Identify vulnerabilities

Review and rate vulnerabilities in order to address the most significant threats first. The riskrating process weighs the probability of a threat against damage that could result should an attack occur.

The output from the threat-modelling process is a document for various members of the project development team. It allows them to clearly understand the threats that need to be addressed and the effective security countermeasures to address them.

Threat Modeling

“Until you understand the threats,

You cannot protect your applications against attacks.”

Understand the threat profile of a system

Shape application design to meet your organisation’s security objectives

Discover vulnerabilities and make trade-offs during key engineering decisions

Reduce risks of security issues arising during development and operations

Approach

Identify security objectives

Create an application overview

Decompose your application

Identify threats

Identify vulnerabilities

Deliverables

RT appsecurelabs: Gartner: Application security programs coming up short #AppSec #DevSecOps #DevOps https://t.co/yw6VIIxkQr

RT @appsecurelabs: Gartner: Application security programs coming up short #AppSec #DevSecOps #DevOps https://t.co/iUnulLIyzm

RT @appsecurelabs: The gaming community is a rising target for credential stuffing attacks #cybersecurity #webappsec https://t.co/774wx5rljR

RT @appsecurelabs: JavaScript Template Attacks expose new browser fingerprinting vectors #webappsec #cybersecurity #privacy https://t.co/P4…

RT appsecurelabs: MyBB Forum Patches Vulnerabilities That Allow Site Takeover https://t.co/j9FrewCHmv

RT @appsecurelabs: Six best practices to implement #DevSecOps in your development environment #appsec https://t.co/xn66E9WCC4

RT @appsecurelabs: How to put the Sec in your #DevSecOps – keeping security top of mind every step of the way #appsec https://t.co/iORLSnx…

RT @appsecurelabs: There’s a significant disconnect between #DevOps capabilities and #DevSecOps readiness #appsec https://t.co/HztFxp2ZEV

RT @appsecurelabs: Most e-commerce websites running Magento at high risk of cybercrime #webappsec #cybersecurity https://t.co/4BvYAYAILU

RT @appsecurelabs: Git your patches here! GitHub offers to brew automatic pull requests loaded with vulnerability fixes https://t.co/hC8DoN…

Connect with Us