Shostack + Friends Blog

microscopic rendering of a COVID-19 spike protein


You may have noticed that my end of the year posts are all science focused. Today, a set of resources on the COVID vaccines.

Scientists extract the samples from the Chang'e 5 spacecraft.

Chang'e 5!

Congratulations to the Chinese for the success of their Chang'e 5 lunar sample return mission!

File folders with the focus on one labeled Assets

The Asset Trap

As we look at what's happened with the Russian attack on the US government and others via Solarwinds, I want to shine a spotlight on a lesson we can apply to threat modeling.


A Threat Modeling Manifesto

A diverse set of experts and advocates for threat modeling are releasing a threat modeling manifesto, modeled after the agile manifesto and focused on values and principles.