Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis

0 avg rating
( 0 ratings by Goodreads )
 
9780470500965: Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis

This book introduces the Process for Attack Simulation & Threat Analysis (PASTA) threat modeling methodology. It provides an introduction to various types of application threat modeling and introduces a risk-centric methodology aimed at applying security countermeasures that are commensurate to the possible impact that could be sustained from defined threat models, vulnerabilities, weaknesses, and attack patterns.  

This book describes how to apply application threat modeling as an advanced preventive form of security. The authors discuss the methodologies, tools, and case studies of successful application threat modeling techniques. Chapter 1 provides an overview of threat modeling, while Chapter 2 describes the objectives and benefits of threat modeling. Chapter 3 focuses on existing threat modeling approaches, and Chapter 4 discusses integrating threat modeling within the different types of Software Development Lifecycles (SDLCs). Threat modeling and risk management is the focus of Chapter 5.  Chapter 6 and Chapter 7 examine Process for Attack Simulation and Threat Analysis (PASTA). Finally, Chapter 8 shows how to use the PASTA risk-centric threat modeling process to analyze the risks of specific threat agents targeting web applications. This chapter focuses specifically on the web application assets that include customer’s confidential data and business critical functionality that the web application provides.

· Provides a detailed walkthrough of the PASTA methodology alongside software development activities, normally conducted via a standard SDLC process

· Offers precise steps to take when combating threats to businesses

· Examines real-life data breach incidents and lessons for risk management

Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis is a resource for software developers, architects, technical risk managers, and seasoned security professionals. 

"synopsis" may belong to another edition of this title.

About the Author:

Tony UcedaVélez is CEO at VerSprite, an Atlanta based security services firm assisting global MNCs on various areas of cyber security, secure software development, threat modeling and security risk management. Tony has worked and led teams in the areas of application security, penetration testing, security architecture, and technical risk management for various organizations in Utility, Banking, Government, Retail, Healthcare, and Information Services.

Marco M Morana serves as Senior Vice President-Application Security Architect for CitiGroup, where he is responsible for managing the architecture risk analysis and threat modeling program globally and leads global initiatives to mitigate risks of emerging cyber-threats targeting web applications of institutional clients. Marco has designed and developed business critical security software products for several Fortune 500 companies, and also for NASA.  

 

"About this title" may belong to another edition of this title.

Top Search Results from the AbeBooks Marketplace

1.

Marco Morana; Tony UcedaVelez
Published by John Wiley and Sons
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Quantity Available: > 20
Seller
INDOO
(Avenel, NJ, U.S.A.)
Rating
[?]

Book Description John Wiley and Sons. Book Condition: New. Brand New. Bookseller Inventory # 0470500964

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 86.69
Convert Currency

Add to Basket

Shipping: US$ 3.50
Within U.S.A.
Destination, Rates & Speeds

2.

Morana, Marco; UcedaVelez, Tony
Published by Wiley (2013)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover Quantity Available: 1
Seller
Ergodebooks
(RICHMOND, TX, U.S.A.)
Rating
[?]

Book Description Wiley, 2013. Hardcover. Book Condition: New. Bookseller Inventory # DADAX0470500964

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 89.09
Convert Currency

Add to Basket

Shipping: US$ 3.99
Within U.S.A.
Destination, Rates & Speeds

3.

Ucedavelez, Tony
Published by Wileyand#8211;Blackwell (2015)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Quantity Available: > 20
Seller
Books2Anywhere
(Fairford, GLOS, United Kingdom)
Rating
[?]

Book Description Wileyand#8211;Blackwell, 2015. HRD. Book Condition: New. New Book. Shipped from UK in 4 to 14 days. Established seller since 2000. Bookseller Inventory # FW-9780470500965

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 87.28
Convert Currency

Add to Basket

Shipping: US$ 11.58
From United Kingdom to U.S.A.
Destination, Rates & Speeds

4.

Marco M. Morana, Tony Ucedavelez
Published by John Wiley and Sons Ltd, United States (2015)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover First Edition Quantity Available: 10
Seller
The Book Depository US
(London, United Kingdom)
Rating
[?]

Book Description John Wiley and Sons Ltd, United States, 2015. Hardback. Book Condition: New. 1. Auflage. Language: English . Brand New Book. This book introduces the Process for Attack Simulation Threat Analysis (PASTA) threat modeling methodology. It provides an introduction to various types of application threat modeling and introduces a risk-centric methodology aimed at applying security countermeasures that are commensurate to the possible impact that could be sustained from defined threat models, vulnerabilities, weaknesses, and attack patterns. This book describes how to apply application threat modeling as an advanced preventive form of security. The authors discuss the methodologies, tools, and case studies of successful application threat modeling techniques. Chapter 1 provides an overview of threat modeling, while Chapter 2 describes the objectives and benefits of threat modeling. Chapter 3 focuses on existing threat modeling approaches, and Chapter 4 discusses integrating threat modeling within the different types of Software Development Lifecycles (SDLCs). Threat modeling and risk management is the focus of Chapter 5. Chapter 6 and Chapter 7 examine Process for Attack Simulation and Threat Analysis (PASTA). Finally, Chapter 8 shows how to use the PASTA risk-centric threat modeling process to analyze the risks of specific threat agents targeting web applications. This chapter focuses specifically on the web application assets that include customer s confidential data and business critical functionality that the web application provides. Provides a detailed walkthrough of the PASTA methodology alongside software development activities, normally conducted via a standard SDLC process Offers precise steps to take when combating threats to businesses Examines real-life data breach incidents and lessons for risk management Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis is a resource for software developers, architects, technical risk managers, and seasoned security professionals. Bookseller Inventory # AAH9780470500965

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 99.11
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

5.

Marco M. Morana, Tony Ucedavelez
Published by John Wiley and Sons Ltd, United States (2015)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover First Edition Quantity Available: 10
Seller
The Book Depository
(London, United Kingdom)
Rating
[?]

Book Description John Wiley and Sons Ltd, United States, 2015. Hardback. Book Condition: New. 1. Auflage. Language: English . Brand New Book. This book introduces the Process for Attack Simulation Threat Analysis (PASTA) threat modeling methodology. It provides an introduction to various types of application threat modeling and introduces a risk-centric methodology aimed at applying security countermeasures that are commensurate to the possible impact that could be sustained from defined threat models, vulnerabilities, weaknesses, and attack patterns. This book describes how to apply application threat modeling as an advanced preventive form of security. The authors discuss the methodologies, tools, and case studies of successful application threat modeling techniques. Chapter 1 provides an overview of threat modeling, while Chapter 2 describes the objectives and benefits of threat modeling. Chapter 3 focuses on existing threat modeling approaches, and Chapter 4 discusses integrating threat modeling within the different types of Software Development Lifecycles (SDLCs). Threat modeling and risk management is the focus of Chapter 5. Chapter 6 and Chapter 7 examine Process for Attack Simulation and Threat Analysis (PASTA). Finally, Chapter 8 shows how to use the PASTA risk-centric threat modeling process to analyze the risks of specific threat agents targeting web applications. This chapter focuses specifically on the web application assets that include customer s confidential data and business critical functionality that the web application provides. Provides a detailed walkthrough of the PASTA methodology alongside software development activities, normally conducted via a standard SDLC process Offers precise steps to take when combating threats to businesses Examines real-life data breach incidents and lessons for risk management Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis is a resource for software developers, architects, technical risk managers, and seasoned security professionals. Bookseller Inventory # AAH9780470500965

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 101.23
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

6.

UcedaVelez, Tony; Morana, Marco M.
Published by Wiley (2015)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover Quantity Available: 1
Seller
Ergodebooks
(RICHMOND, TX, U.S.A.)
Rating
[?]

Book Description Wiley, 2015. Hardcover. Book Condition: New. Bookseller Inventory # BKTY9780470500965

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 109.10
Convert Currency

Add to Basket

Shipping: US$ 3.99
Within U.S.A.
Destination, Rates & Speeds

7.

Tony UcedaVelez; Marco M. Morana
Published by Wiley (2015)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover First Edition Quantity Available: 1
Seller
Irish Booksellers
(Rumford, ME, U.S.A.)
Rating
[?]

Book Description Wiley, 2015. Hardcover. Book Condition: New. book. Bookseller Inventory # M0470500964

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 121.48
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

8.

UcedaVelez, Tony, Morana, Marco M.
Published by Wiley (2015)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover Quantity Available: 2
Seller
Murray Media
(North Miami Beach, FL, U.S.A.)
Rating
[?]

Book Description Wiley, 2015. Hardcover. Book Condition: New. Never used!. Bookseller Inventory # P110470500964

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 121.59
Convert Currency

Add to Basket

Shipping: US$ 1.99
Within U.S.A.
Destination, Rates & Speeds

9.

Marco M. Morana, Tony UcedaVelez
Published by John Wiley and Sons Ltd
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover Quantity Available: 1
Seller
THE SAINT BOOKSTORE
(Southport, United Kingdom)
Rating
[?]

Book Description John Wiley and Sons Ltd. Hardback. Book Condition: new. BRAND NEW, Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis, Marco M. Morana, Tony UcedaVelez, This book introduces the Process for Attack Simulation & Threat Analysis (PASTA) threat modeling methodology. It provides an introduction to various types of application threat modeling and introduces a risk-centric methodology aimed at applying security countermeasures that are commensurate to the possible impact that could be sustained from defined threat models, vulnerabilities, weaknesses, and attack patterns. This book describes how to apply application threat modeling as an advanced preventive form of security. The authors discuss the methodologies, tools, and case studies of successful application threat modeling techniques. Chapter 1 provides an overview of threat modeling, while Chapter 2 describes the objectives and benefits of threat modeling. Chapter 3 focuses on existing threat modeling approaches, and Chapter 4 discusses integrating threat modeling within the different types of Software Development Lifecycles (SDLCs). Threat modeling and risk management is the focus of Chapter 5. Chapter 6 and Chapter 7 examine Process for Attack Simulation and Threat Analysis (PASTA). Finally, Chapter 8 shows how to use the PASTA risk-centric threat modeling process to analyze the risks of specific threat agents targeting web applications. This chapter focuses specifically on the web application assets that include customer's confidential data and business critical functionality that the web application provides. * Provides a detailed walkthrough of the PASTA methodology alongside software development activities, normally conducted via a standard SDLC process * Offers precise steps to take when combating threats to businesses * Examines real-life data breach incidents and lessons for risk management Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis is a resource for software developers, architects, technical risk managers, and seasoned security professionals. Bookseller Inventory # B9780470500965

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 115.57
Convert Currency

Add to Basket

Shipping: US$ 8.94
From United Kingdom to U.S.A.
Destination, Rates & Speeds

10.

UcedaVelez, Tony; Morana, Marco M.
Published by Wiley (2015)
ISBN 10: 0470500964 ISBN 13: 9780470500965
New Hardcover Quantity Available: 1
Seller
Ergodebooks
(RICHMOND, TX, U.S.A.)
Rating
[?]

Book Description Wiley, 2015. Hardcover. Book Condition: New. Bookseller Inventory # INGM9780470500965

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 120.75
Convert Currency

Add to Basket

Shipping: US$ 3.99
Within U.S.A.
Destination, Rates & Speeds

There are more copies of this book

View all search results for this book