First is that bugs are a great exit point for the activity, and second, bugs are going to get triaged again anyway.įirst, bugs are a great end point. I think there are two good reasons to consider threat modeling as an activity that produces a bug list, rather than a prioritized list. My issue is that I think issues discovered by threat modeling are, in reality, dealt with by only a few of Gunnar’s top 5 influencers. I think Wendy and I are in agreement that threat modeling should happen early, and that probability is important. ( Wendy) Yes, because I see TM as being important in design, when the bugs haven’t been written in yet. Do you evaluate bugs 2x? Once in threat model & once in bug triage? ( me) Thanks! I’m not advocating against risk, but asking when. ( Wendy) As much as I love Elevation of Privilege, I don’t think any threat modeling is complete without considering probability too. Yesterday, I got into a bit of a back and forth with Wendy Nather on threat modeling and the role of risk management, and I wanted to respond more fully.
0 Comments
Leave a Reply. |