microsoft threat modeling tool 2016
TRANSCRIPT
Microsoft Threat Modeling Tool 2016
Rihab CHEBBAH
June 16, 2016
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 1 / 14
Contents
1 IntroductionThreat ModelingMicrosoft Security Development Lifecycle Threat Modeling
2 Microsoft Threat Modeling Tool 2016DefinitionModel in useThe design View and DFDsThe Analysis View and Threat Management
3 Conclusion
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 2 / 14
Introduction Threat Modeling
Threat Modeling?
DefinitionOffers a description of the security issues and resources thedesigner cares about;can help to assess the probability, the potential harm, the priorityetc., of attacks, and thus help to minimize or eradicate the threats.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 3 / 14
Introduction Microsoft Security Development Lifecycle Threat Modeling
Microsoft Security Development Lifecycle ThreatModeling?
DefinitionMicrosoft’s Security Development Lifecycle (SDL) acts as asecurity assurance process which focuses on softwaredevelopment used to ensure a reduction in the number andseverity of vulnerabilities in software;Threat Modeling is a core element of the Microsoft SDL;
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 4 / 14
Microsoft Threat Modeling Tool 2016 Definition
Microsoft Threat Modeling Tool 2016
Definitiongraphically identifies processes and data flows (DFD) thatcomprise an application or service.enables any developer or software architect to
Communicate about the security design of their systems;Analyze those designs for potential security issues using a provenmethodology;Suggest and manage mitigations for security issues.
based on the STRIDE Model.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 5 / 14
Microsoft Threat Modeling Tool 2016 Model in use
STRIDE model
STRIDE modelThe name STRIDE is based on of the initial letter of possiblethreats:
SpoofingTamperingRepudiationInformation disclosureDenial of serviceElevation of privilege
It classifies threats in accordance with their categories. By usingthese categories of threats, one has the ability to create a securitystrategy for a particular system in order to have plannedresponses and mitigations to threats or attacks.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 6 / 14
Microsoft Threat Modeling Tool 2016 The design View and DFDs
The design View
The Microsoft Threat Modeling tool offers an easy way to get startedwith threat modeling.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 7 / 14
Microsoft Threat Modeling Tool 2016 The design View and DFDs
Stencils pane
:
Process: components that perform computation on dataExternal: entities external to the system such as web services, browsers, authorization providersetc.Store: data repositoriesFlow: communication channels used for data transfer between entities or componentsBoundary: trust boundaries of different kinds such as internet, machine, user-mode/kernel-mode boundaries etc.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 8 / 14
Microsoft Threat Modeling Tool 2016 The design View and DFDs
DFD
The tool uses a simple drag and drop action in order to build a flowdiagram for any use case or function specified. we use DFD toillustrate how data moves through the system.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 9 / 14
Microsoft Threat Modeling Tool 2016 The Analysis View and Threat Management
The Analysis ViewSwitching to the Analysis view displays an auto generated list of possible threats based on thedata flow diagram.
we illustrate with this view the different threats as well as their properties such as (name,
categories, description, Threat Priority: High, Medium, or, Low)
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 10 / 14
Microsoft Threat Modeling Tool 2016 The Analysis View and Threat Management
Reporting
In addition, a Report feature allows the generation of a comprehensive report covering all
identified threats and their current state.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 11 / 14
Conclusion
Conclusion
The Microsoft’s SDL threat Modeling Tool 2016 offers an easy drawingenvironment,an automatic threat generation using the stride perinteraction approach .It helps engineers analyze the security of their systems to find andaddress design issues early in the software lifecycle.
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 12 / 14
That’s all folks
Thank you for your attention !
Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 13 / 14