Skip to main content

The process of describing possible threats and analyzing their possible affect on target systems.

Threat modeling is an organised way to identify threats (potential risks) in an application and its environment. A matured threat model also helps in the process of risk assessment by assisting in informed decision making and impact assessment.

The in-scope topics for this tag would include - Threat modeling tools, severity and impact assessment, architecture review, Data flow diagrams etc.