Must-read: a book about Threat Modeling

It’s quite a long time ago when I have written my last blog entry, but the last weeks where quite busy for me. First of all starting with a security road show for developers through Austria with my colleague Beat and afterwards doing some workshops (a couple of days in UK, immediately afterwards in Salzburg, then in Graz...).


Therefore I have some things to share with you for the next couple of days. The first and in my opinion most important thing is again about threat modeling. Many people at the security road show really appreciated the idea of threat modeling and I am very glad about that.


Definitely you cannot solve all your potential security problems just by applying coding techniques or “adding some security features”. A fundamental understanding of the environment and possible threats within this environment is necessary for creating secure applications – and that’s what threat modeling is all about - analyzing your environment and potential threats within this environment. According to these threats you are able to find appropriate mitigation techniques and include them even in your application architecture. Furthermore threat models are a good foundation for creating test cases for security tests, too.


At least Microsoft Press will release a book about threat modeling. This is definitely something that should be read by every developer, designer and architect. Just take a look at - I hope that the book will be a good start for this new architectural discipline.

Comments (2)

  1. I have waiting for this book for a long time now. I think every developer should have the Threat Modeling book and the Writing Secure code 2: edition in there bookshelf.

  2. I thought valuable mentioning the following URL

    Threat Modeling Tool

    The Threat Modeling Tool allows users to create threat model documents for applications. It organizes relevant data points, such as entry points, assets, trust levels, data flow diagrams, threats, threat trees, and vulnerabilities into an easy-to-use tree-based view. The tool saves the document as XML, and will export to HTML and MHT using the included XSLTs, or a custom transform supplied by the user.

    The Threat Modeling Tool was built by Microsoft Security Software Engineer Frank Swiderski, the author of Threat Modeling (Microsoft Press, June 2004).

Skip to main content