LASCON 2024

Threat modeling is an important process in building secure products throughout their lifecycle. Early adoption is especially important for a software product as it facilitates development of more secure software and minimizes the need for time-consuming rework caused by security flaws discovered later.
At Thales, threat modeling has been an integral part of our software security assurance plan for many years. These practices, based on widely recognized methods and a well-known open-source tool, yield significant benefits. We continually improve our processes and recently investigated alternate methodologies and open-source tools. The outcome highlights new ways of thinking about and performing threat modeling.
Join us in this informative session as we share our findings and recommendations. You will gain exposure to a range of threat modeling methodologies, open-source tools and obtain valuable suggestions that will enhance the effectiveness of your threat modeling practices.