Threat Modeling: Finding the Worst Vulnerabilities You'll Never Write

Presented by

Matthew Butler

About this talk

Threat Modeling is fundamental to understanding risk. We do it every day: driving a car, crossing a street, walking alone at night in an strange city. Darkness, isolation, insecurity, vulnerability all trigger our threat modeling instincts. And that's exactly where our systems operate. In this talk, we'll see how to use threat modeling to find the worste vulnerabilities hidden in the complexity of our systems by uncovering architectural flaws early, exposing attack surfaces, identifying attack vectors. You can't code your way out of a bad architecture but you can threat model your way out.

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (169)
Subscribers (14042)
WhiteSource allows engineering, security and compliance officers to effortlessly secure and manage the use of open source components in their software, allowing developers to focus on building great products. WhiteSource fully automates all open source management processes: component detection; security vulnerability alerts and fixes; license risk and compliance analysis along with policy enforcement; quality review, and new version alerts. It offers a complete suite of control, reporting and management to help software teams manage open source truly effortlessly. For more information about WhiteSource, visit or follow us on twitter: @whitesourcesoft