The three main approaches for threat modelling are asset-centric, attacker-centric and software-centric. In this thesis we ask the question why one should only use just one of the three approaches, and not combine them. We then propose a method called integrated threat modelling which combines the three common threat modelling approaches. This project was done in collaboration with Telenor.
Integrated Threat Modelling
Publisert 28. aug. 2020 14:40
- Sist endret 17. des. 2022 18:01