Overview and goals

Microsoft has had documented threat modeling methodologies since 1999 and these methods have been effective at finding security flaws early in the design process. Currently threat modeling is a part of the Microsoft Security Development Lifecycle (SDL) and we continue to invest in updating our tools, methodologies and processes with lessons learned . This seminar aims to share information about the history of our SDL threat modeling methods, lessons weve learned along the way, describe our current approaches and tools, and share some problems which we hope are of interest to the audience.

Target audience

This seminar will be interesting to all those involved in software development process and willing to discover new methodologies helping them make software more secure. It doesnt require hands-on programming experience, but basic knowledge of modern software security threats and principles will be beneficial in understanding the material.

Main topics

  • Why Threat Modeling is important
  • Brief history of Threat Modeling at Microsoft
  • Modern SDL Threat Modeling methodology
  • Overview of the upcoming Microsoft SDL Threat Modeling Tool

Ivan MedvedevSpeaker Bio: Ivan Medvedev graduated from the Moscow State University and since 1999 has been working on various security technologies at Microsoft. Ivan has been a part of the group that is home to the SDL, MSRC and Secure Windows Initiative for four and a half years and currently leads a team of developers building internal security tools that help support the SDL process within the company.