Threat modeling is a pain in the ass, doubly so if you're using an automated too... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mahmud on Aug 17, 2009 \| parent \| context \| favorite \| on: Web Application Threat Model Threat modeling is a pain in the ass, doubly so if you're using an automated tool. Simple, platform and software-specific checklists might be better. Here is a generic one as well. http://www.sans.org/reading_room/whitepapers/securecode/a_se...

showerst on Aug 17, 2009 | [–]

Please post a [PDF] warning on pdf links.

jacquesm on Aug 17, 2009 | [–]

You should post that one separately.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact