From the course: Threat Modeling: Tampering in Depth
Four-question framework
From the course: Threat Modeling: Tampering in Depth
Four-question framework
- [Instructor] At the heart of threat modeling are four incredibly simple questions. What are we working on, what can go wrong, what are we going to do about it, and did we do a good job? These questions act as guideposts as you're threat modeling and analyzing your work. If you're not sure why you're doing what you're doing, tie that work to one of these questions. In this course, I'll be digging deep into details about what can go wrong and what are we going to do about it, through the lens of tampering and integrity. Tampering is a broad threat. I can tamper with files, network communication, running code, or even time. The mechanisms are quite different as I do, but all involve breaking integrity. Looking at these four questions through a tampering lens is part of the systematic, structured, and comprehensive approach to security that your customers deserve.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.