abstract

Evaluating the effectiveness of Microsoft threat modeling tool

Authors:

Imano Williams,

Xiaohong YuanAuthors Info & Claims

InfoSec '15: Proceedings of the 2015 Information Security Curriculum Development Conference

Article No.: 9, Pages 1 - 6

https://doi.org/10.1145/2885990.2885999

Published: 10 October 2015 Publication History

Get Access

Abstract

Today, it is widely accepted that software security best practices need to be integrated into all the stages of the software development life cycle (SDLC). This is because software applications are constantly being exposed to malicious attacks by hackers. One of the best practices for software security is threat modeling. It is essential for software security in the design stage of the SDLC and can help to reduce software design flaws significantly before the software application is implemented. The topics of threat modeling and the SDLC threat modeling tool were introduced to graduate students in a secure software engineering course. The effectiveness of Microsoft's Threat Modeling Tool was evaluated through a course assignment that included two parts: A) threat modeling using a manual process and B) threat modeling using Microsoft's 2014 threat modeling tool. This paper presents the results of the evaluation of the tool in assisting non-experts, students, in conducting an architectural risk analysis on a mock online shopping web application.

References

[1]

McGraw, G., & Viega, J. (2001). Building Secure Software. Addison Wesley.

Google Scholar

[2]

McGraw, G. Software Security. IEEE Security & Privacy. 2004

Digital Library

Google Scholar

[3]

M. Howard. Building more secure software with improved development process. IEEE Security & Privacy, 2(6):63--65, 2004.

Digital Library

Google Scholar

[4]

Ardi, Shanai, et al. "How can the developer benefit from security modeling?" Availability, Reliability and Security, 2007. ARES 2007. The Second International Conference on. IEEE, 2007.

Digital Library

Google Scholar

[5]

Möckel, Caroline, and Ali E. Abdallah. "Threat modeling approaches and tools for securing architectural designs of an e-banking application." Information Assurance and Security (IAS), 2010 Sixth International Conference on. IEEE, 2010.

Google Scholar

[6]

AlBreiki, Hamda Hasan, and Qusay H. Mahmoud. "Evaluation of static analysis tools for software security." In Innovations in Information Technology (INNOVATIONS), 2014 10th International Conference on, pp. 93--98. IEEE, 2014.

Google Scholar

[7]

Chapter 3 Threat Modeling, retrieved on March 20, 2015 from http://msdn.microsoft.com/en-us/library/ff648644.aspx

Google Scholar

[8]

Uncover Security Design Flaws Using The STRIDE Approach, retrieved on March 20, 2015 from http://msdn.microsoft.com/en-s/magazine/cc163519.aspx#S3

Google Scholar

[9]

McGraw, Gary. Software Security: Building Security In. 1^st edition. Addison-Wesley Professional, 2006, pp. 150--179

Digital Library

Google Scholar

[10]

Threat Modeling Tool 2014 Demo, retrieved from https://www.youtube.com/watch?v=G2reie1skGg

Google Scholar

Cited By

View all

Roy PKumar PBhattacharya A(2025)ZeroVCS: An efficient authentication protocol without trusted authority for zero-trust vehicular communication systemsFuture Generation Computer Systems10.1016/j.future.2024.107520163(107520)Online publication date: Feb-2025
https://doi.org/10.1016/j.future.2024.107520
Jawad AAssal HJaskolka J(2024)"I'm Getting Information that I Can Act on Now": Exploring the Level of Actionable Information in Tool-generated Threat ReportsProceedings of the 2024 European Symposium on Usable Security10.1145/3688459.3688467(172-186)Online publication date: 30-Sep-2024
https://dl.acm.org/doi/10.1145/3688459.3688467
Kwarteng EKwarteng JBansal NCebe M(2024)Exploring Medical Device Manufacturing Domain Threat Modeling Methodologies: User Perspectives on Security, Privacy and Safety2024 18th International Symposium on Medical Information and Communication Technology (ISMICT)10.1109/ISMICT61996.2024.10738169(22-27)Online publication date: 15-May-2024
https://doi.org/10.1109/ISMICT61996.2024.10738169
Show More Cited By

Index Terms

Evaluating the effectiveness of Microsoft threat modeling tool
1. Security and privacy
  1. Software and application security
    1. Software security engineering
2. Software and its engineering
  1. Software creation and management
    1. Designing software
      1. Software implementation planning
        Software design techniques
    2. Software development process management
      1. Software development methods
  2. Software organization and properties
    1. Software functional properties
      1. Correctness
        Access protection

Recommendations

Software and attack centric integrated threat modeling for quantitative risk assessment
HotSos '16: Proceedings of the Symposium and Bootcamp on the Science of Security

One step involved in the security engineering process is threat modeling. Threat modeling involves understanding the complexity of the system and identifying all of the possible threats, regardless of whether or not they can be exploited. Proper ...
Mitigation of SQL Injection Attacks using Threat Modeling

Day after day, SQL Injection (SQLI) attack is consistently proliferating across the globe. According to Open Web Application Security Project (OWASP) Top Ten Cheat Sheet-2014, SQLI is at top in the list of online attacks. The cause of spread of SQLI is ...
Threat-Driven Modeling and Verification of Secure Software Using Aspect-Oriented Petri Nets

Design-level vulnerabilities are a major source of security risks in software. To improve trustworthiness of software design, this paper presents a formal threat-driven approach, which explores explicit behaviors of security threats as the mediator ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

InfoSec '15: Proceedings of the 2015 Information Security Curriculum Development Conference

October 2015

61 pages

ISBN:9781450340496

DOI:10.1145/2885990

Conference Chair:
Michael Whitman,
Program Chair:
Humayun Zafar

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

In-Cooperation

SIGMIS: ACM Special Interest Group on Management Information Systems

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 10 October 2015

Check for updates

Author Tags

Qualifiers

Abstract

Conference

INFOSECCD '15

Sponsor:

INFOSECCD '15: Information Security Curriculum Development Conference

October 10, 2015

Georgia, Kennesaw

Acceptance Rates

Overall Acceptance Rate 18 of 23 submissions, 78%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

13
Total Citations
View Citations
725
Total Downloads

Downloads (Last 12 months)87
Downloads (Last 6 weeks)6

Reflects downloads up to 11 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Roy PKumar PBhattacharya A(2025)ZeroVCS: An efficient authentication protocol without trusted authority for zero-trust vehicular communication systemsFuture Generation Computer Systems10.1016/j.future.2024.107520163(107520)Online publication date: Feb-2025
https://doi.org/10.1016/j.future.2024.107520
Jawad AAssal HJaskolka J(2024)"I'm Getting Information that I Can Act on Now": Exploring the Level of Actionable Information in Tool-generated Threat ReportsProceedings of the 2024 European Symposium on Usable Security10.1145/3688459.3688467(172-186)Online publication date: 30-Sep-2024
https://dl.acm.org/doi/10.1145/3688459.3688467
Kwarteng EKwarteng JBansal NCebe M(2024)Exploring Medical Device Manufacturing Domain Threat Modeling Methodologies: User Perspectives on Security, Privacy and Safety2024 18th International Symposium on Medical Information and Communication Technology (ISMICT)10.1109/ISMICT61996.2024.10738169(22-27)Online publication date: 15-May-2024
https://doi.org/10.1109/ISMICT61996.2024.10738169
Chimuco FSequeiros JSimōes TFreire MInácio P(2024)Expediting the design and development of secure cloud-based mobile appsInternational Journal of Information Security10.1007/s10207-024-00880-623:4(3043-3064)Online publication date: 1-Aug-2024
https://dl.acm.org/doi/10.1007/s10207-024-00880-6
Tran AYskout KJoosen W(2024)Threat Modeling: A Rough Diamond or Fool’s Gold?Software Architecture. ECSA 2023 Tracks, Workshops, and Doctoral Symposium10.1007/978-3-031-66326-0_8(120-129)Online publication date: 30-Jul-2024
https://doi.org/10.1007/978-3-031-66326-0_8
Chung MYang YWang LCento GJerath KRaman ALie DChignell M(2023)Implementing Data Exfiltration Defense in Situ: A Survey of Countermeasures and Human InvolvementACM Computing Surveys10.1145/358207755:14s(1-37)Online publication date: 25-Jan-2023
https://dl.acm.org/doi/10.1145/3582077
Chlup SChristl KSchmittner CShaaban ASchauer SLatzenhofer M(2022)THREATGET: Towards Automated Attack Tree Analysis for Automotive CybersecurityInformation10.3390/info1401001414:1(14)Online publication date: 27-Dec-2022
https://doi.org/10.3390/info14010014
Althar RSamanta DKaur MSingh DLee H(2022)Automated Risk Management Based Software Security Vulnerabilities ManagementIEEE Access10.1109/ACCESS.2022.318506910(90597-90608)Online publication date: 2022
https://doi.org/10.1109/ACCESS.2022.3185069
Mahmood SNguyen HShaikh S(2022)Systematic threat assessment and security testing of automotive over-the-air (OTA) updatesVehicular Communications10.1016/j.vehcom.2022.10046835(100468)Online publication date: Jun-2022
https://doi.org/10.1016/j.vehcom.2022.100468
Bygdas EJaatun LAntonsen SRingen AEiring E(2021)Evaluating Threat Modeling Tools: Microsoft TMT versus OWASP Threat Dragon2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA)10.1109/CyberSA52016.2021.9478215(1-7)Online publication date: 14-Jun-2021
https://doi.org/10.1109/CyberSA52016.2021.9478215
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Software and attack centric integrated threat modeling for quantitative risk assessment

Mitigation of SQL Injection Attacks using Threat Modeling

Threat-Driven Modeling and Verification of Secure Software Using Aspect-Oriented Petri Nets