Project OVVL – Threat Modeling Support for the entire secure development lifecycle

Schaad, Andreas

Konferenzbeitrag

Project OVVL – Threat Modeling Support for the entire secure development lifecycle

Dokumententyp

Text/Conference Paper

Dateien

B1-2.pdf (508.76 KB)

Datum

2020

Autor:innen

Schaad, Andreas

Quelle

SICHERHEIT 2020

Practitioners Track

Verlag

Gesellschaft für Informatik e.V.

Zusammenfassung

OVVL (the Open Weakness and Vulnerability Modeller) is a tool and methodology to support threat modeling in the early stages of the secure software development lifecycle. We provide an overview of OVVL (https://ovvl.org), its data model and browser-based UI. We equally provide a discussion of initial experiments on how identified threats in the design phase can be aligned with later activities in the software lifecycle (issue management and security testing).

Schaad, Andreas (2020): Project OVVL – Threat Modeling Support for the entire secure development lifecycle. SICHERHEIT 2020. DOI: 10.18420/sicherheit2020_10. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-695-4. pp. 121-124. Practitioners Track. Göttingen, Germany. 17.-20. März 2020

Schlagwörter

Threat Modeling , Secure Software Development Lifecycle , STRIDE

DOI

10.18420/sicherheit2020_10

Sammlungen

P301 - Sicherheit 2020 - Sicherheit, Schutz und Zuverlässigkeit

Komplettanzeige

Project OVVL – Threat Modeling Support for the entire secure development lifecycle

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen