filmov
tv
APPSEC Cali 2018 - Threat Modeling Toolkit
Показать описание
by Jonathan Marcil, Application Security Engineer at Twitch
Abstract:
Threat Modeling is a great way to analyze security early in software development by structuring possible attacks, bad actors and countermeasures over a broad view of the targeted system. This talk will describe basic components of a threat model and how to use them effectively. Modeling concepts will be demonstrated using a cryptocurrency ecosystem as example.
by Jonathan Marcil, Application Security Engineer of Twitch
Jonathan Marcil is the former chapter leader of OWASP Montreal and is now based in beautiful Irvine, California. Jonathan has been involved with OWASP for many years and is behind the official OWASP YouTube channel. He was also part of NorthSec CTF as a challenge designer specialized in Web and imaginative contraptions. He is passionate about Application Security and enjoys architecture analysis, code review, threat modeling and debunking security tools. He holds a bachelor's degree in Software Engineering from ETS Montreal and has more than 15 years of experience in Information Technology and Security.
Abstract:
Threat Modeling is a great way to analyze security early in software development by structuring possible attacks, bad actors and countermeasures over a broad view of the targeted system. This talk will describe basic components of a threat model and how to use them effectively. Modeling concepts will be demonstrated using a cryptocurrency ecosystem as example.
by Jonathan Marcil, Application Security Engineer of Twitch
Jonathan Marcil is the former chapter leader of OWASP Montreal and is now based in beautiful Irvine, California. Jonathan has been involved with OWASP for many years and is behind the official OWASP YouTube channel. He was also part of NorthSec CTF as a challenge designer specialized in Web and imaginative contraptions. He is passionate about Application Security and enjoys architecture analysis, code review, threat modeling and debunking security tools. He holds a bachelor's degree in Software Engineering from ETS Montreal and has more than 15 years of experience in Information Technology and Security.
0:49:29
APPSEC Cali 2018 - Threat Modeling Panel
0:51:55
APPSEC Cali 2018 - Lessons From The Threat Modeling Trenches
0:49:17
APPSEC Cali 2018 - Threat Modeling Toolkit
0:44:22
APPSEC Cali 2018 - Opening Keynote: Prove It! Confronting Security With Data.
0:43:23
APPSEC Cali 2018 - Opening Keynote - Flipping the script
0:45:51
APPSEC Cali 2018 - The Best Flaw Didn't Make Into Production
0:28:48
APPSEC Cali 2018 - Prevention as a Business Strategy
0:47:25
APPSEC Cali 2018 - The Only Reason Security Really Matters for DevOps
0:50:32
APPSEC Cali 2018 - SecDevOps: Current Research and Best Practices
0:51:41
APPSEC Cali 2018 - Breaking Fraud and Bot Detection Solutions
0:47:00
APPSEC Cali 2018 - OWASP Top 10
0:41:21
APPSEC Cali 2018 - Architecting for Security in the Cloud
0:54:01
APPSEC Cali 2018 - Taking on the King: Killing Injection Vulnerabilities
0:39:38
APPSEC Cali 2018 - Leveraging Cloud SDNs to Solve OWASP Top Ten
0:52:39
APPSEC Cali 2018 - We Come Bearing Gifts: Enabling Product Security with Culture and Cloud
0:39:44
APPSEC Cali 2018 - MarkDoom: How I Hacked Every Major IDE in 2 Weeks
0:38:50
APPSEC Cali 2018 - The Path Of DevOps Enlightenment For InfoSec
0:39:56
APPSEC Cali 2018 - Robots with Pentest Recipes
0:50:03
APPSEC Cali 2018 - A Tour of API Underprotection
0:02:57
APPSEC Cali 2018 - Marketing Trailer
0:19:38
Lightning Talk: OWASP Project Showcase: Threat Model Cookbook - Jonathan Marcil
0:28:58
APPSEC Cali 2018 - Hunter – Optimize your Pentesters Time
0:31:37
APPSEC Cali 2018 - Costs of Coding to Compliance
0:33:55
APPSEC Cali 2018 - Decrease Your Stress and Increase Your Reach with Appsec Champions
Комментарии