Shostack + Friends Blog

What can we learn from the C2PA security considerations document? (29 Nov 2023)

What can we learn from Gunnar Peterson’s Threat Model for Thanksgiving? (23 Nov 2023)

Some diagrams to help clarify machine learning threats (13 Apr 2023)

Cumulus is a cloud-oriented version of Elevation of Privilege (06 Apr 2023)

NCC has released a threat model for Google Cloud Platform. What can it teach us? (01 Mar 2023)

Threat Modeling is the software version of measure twice, cut once. (12 Jan 2023)

Looking at a threat model for curl, the command line web client. (29 Dec 2022)

Earlier this week, NIST released a Recommended Minimum Standard for Vendor or Developer Verification of Code. I want to talk about the technical standard overall, the threat modeling component, and the what the standard means now and in the future. (15 Jul 2021)

The US Government's lead cybersecurity agencies have released an interesting report, and I wanted to use this for a Threat Model Thursday, where we take a respectful look at threat modeling work products to see what we can learn. (01 Jul 2021)

I'm exploring the concept of very fast threat modeling videos. (17 Jun 2021)

Threat model Thursday is not just back, but live again! (20 May 2021)

“It depends on your threat model...” (29 Apr 2021)

Expanding on the UK Government's ‘The Uk Code of Practice for Consumer IoT Security’ and how it aligns with Threat Modeling. (22 Apr 2021)

A bunch of people recently asked me about Robert Reichel’s post 'How We Threat Model,' and I wanted to use it to pick up on Threat Model Thursdays. (16 Apr 2021)

A recent talk by Alyssa Miller focuses on integrating threat modeling in devops. (02 Jul 2020)

For Threat Model Thursday, I want to look at models and modeling in a tremendously high-stakes space: COVID models. (14 May 2020)

This week's threat model Thursday looks at an academic paper, Security Threat Modeling: Are Data Flow Diagrams Enough? by Laurens Sion and colleagues. (23 Apr 2020)

On Linkedin, Peter Dowdall had a very important response to my post on remote threat modeling. (02 Apr 2020)

This post comes from a conversation I had on Linkedin with Clint Gibler. (19 Mar 2020)

Exploring supply chain threat modeling with Alexa (05 Mar 2020)

Risk Framework and Machine Learning (27 Feb 2020)

For reasons I can't quite talk about yet, this has been a super busy time, and I look forward to sharing the exciting developments that have kept me occupied. (06 Feb 2020)

Have you considered the idea that “Files are Fraught With Peril” lately? Maybe you should... (23 Jan 2020)

I joined Caroline Wong on the Humans of Infosec Podcast to discuss The Human Element of Threat Modeling. (09 Jan 2020)

For my first blog post of 2020, I want to look at threat modeling machine learning systems. (02 Jan 2020)

Let's talk CAKED, a threat model for managed attribution. (14 Nov 2019)

“Includes No Dirt” is a threat modeling approach by William Dogherty and Patrick Curry of Omada Health, and I've been meaning to write about it since it came out. (31 Oct 2019)

There are a couple of new, short (4-page), interesting papers from a team at KU Leuven discussin the building blocks of threat modeling. (07 May 2019)

[no description provided] (04 Oct 2018)

[no description provided] (14 Sep 2018)

[no description provided] (23 Aug 2018)

[no description provided] (26 Jul 2018)

Help me help you. (12 Jul 2018)

[no description provided] (05 Jul 2018)

[no description provided] (21 Jun 2018)

Understanding Google's Post-Spectre threat model (14 Jun 2018)

[no description provided] (31 May 2018)

[no description provided] (24 May 2018)

[no description provided] (26 Apr 2018)

[no description provided] (05 Apr 2018)

[no description provided] (22 Mar 2018)