microsoft threat modeling tool 2016

Microsoft Threat Modeling Tool 2016

Rihab CHEBBAH

June 16, 2016

Rihab CHEBBAH Microsoft Threat Modeling Tool 2016 June 16, 2016 1 / 14

Contents

1 IntroductionThreat ModelingMicrosoft Security Development Lifecycle Threat Modeling

2 Microsoft Threat Modeling Tool 2016DefinitionModel in useThe design View and DFDsThe Analysis View and Threat Management

3 Conclusion


Introduction Threat Modeling

Threat Modeling?

DefinitionOffers a description of the security issues and resources thedesigner cares about;can help to assess the probability, the potential harm, the priorityetc., of attacks, and thus help to minimize or eradicate the threats.


Introduction Microsoft Security Development Lifecycle Threat Modeling

Microsoft Security Development Lifecycle ThreatModeling?

DefinitionMicrosoft’s Security Development Lifecycle (SDL) acts as asecurity assurance process which focuses on softwaredevelopment used to ensure a reduction in the number andseverity of vulnerabilities in software;Threat Modeling is a core element of the Microsoft SDL;


Microsoft Threat Modeling Tool 2016 Definition

Microsoft Threat Modeling Tool 2016

Definitiongraphically identifies processes and data flows (DFD) thatcomprise an application or service.enables any developer or software architect to

Communicate about the security design of their systems;Analyze those designs for potential security issues using a provenmethodology;Suggest and manage mitigations for security issues.

based on the STRIDE Model.


Microsoft Threat Modeling Tool 2016 Model in use

STRIDE model

STRIDE modelThe name STRIDE is based on of the initial letter of possiblethreats:

SpoofingTamperingRepudiationInformation disclosureDenial of serviceElevation of privilege

It classifies threats in accordance with their categories. By usingthese categories of threats, one has the ability to create a securitystrategy for a particular system in order to have plannedresponses and mitigations to threats or attacks.


Microsoft Threat Modeling Tool 2016 The design View and DFDs

The design View

The Microsoft Threat Modeling tool offers an easy way to get startedwith threat modeling.



Stencils pane

:

Process: components that perform computation on dataExternal: entities external to the system such as web services, browsers, authorization providersetc.Store: data repositoriesFlow: communication channels used for data transfer between entities or componentsBoundary: trust boundaries of different kinds such as internet, machine, user-mode/kernel-mode boundaries etc.



DFD

The tool uses a simple drag and drop action in order to build a flowdiagram for any use case or function specified. we use DFD toillustrate how data moves through the system.


Microsoft Threat Modeling Tool 2016 The Analysis View and Threat Management

The Analysis ViewSwitching to the Analysis view displays an auto generated list of possible threats based on thedata flow diagram.

we illustrate with this view the different threats as well as their properties such as (name,

categories, description, Threat Priority: High, Medium, or, Low)


Microsoft Threat Modeling Tool 2016 The Analysis View and Threat Management

Reporting

In addition, a Report feature allows the generation of a comprehensive report covering all

identified threats and their current state.


Conclusion

Conclusion

The Microsoft’s SDL threat Modeling Tool 2016 offers an easy drawingenvironment,an automatic threat generation using the stride perinteraction approach .It helps engineers analyze the security of their systems to find andaddress design issues early in the software lifecycle.


That’s all folks

Thank you for your attention !


microsoft threat modeling tool 2016

Education