In this session, Mario Areias will introduce attack trees and how they can fit in a DevOps world. This talk will also challenge some of the assumptions about threat models.
Traditionally, Threat Models have been a slow and boring process that end up with a giant document detailing any possible security problem. This approach, although useful in the past, is not necessarily good in an ever changing environment. In this session, Mario Areias will introduce attack trees and how they can fit in a DevOps world. This talk will also challenge some of the assumptions about threat models.
Traditionally, Threat Models have been a slow and boring process that end up with a giant document detailing any possible security problem. This approach, although useful in the past, is not necessarily good in an ever changing environment. In this session, Mario Areias will introduce attack trees and how they can fit in a DevOps world. This talk will also challenge some of the assumptions about threat models.
