Explore the intricacies of threat modeling for containerized applications in this 26-minute conference talk from OWASP Global AppSec Tel Aviv. Delve into optimizing threat modeling processes, addressing the challenges organizations face in implementation, and learn how to adapt the model for container-specific security concerns. Discover real-world examples of how effective threat modeling can mitigate the impact of Docker and Kubernetes vulnerabilities. Gain insights from Elena Kravchenko, an experienced Application Security Expert and CISSP, as she shares strategies for measuring success, implementing incremental improvements, and integrating threat modeling throughout the development lifecycle.
Threat Modeling of Containerized Applications - Three Levels of Complexity
Overview
Syllabus
Three levels of complexity: Threat Modeling of Containerized Application ELENA KRAVCHENKO
Taught by
OWASP Foundation
Related Courses
-
Threat Modeling Security Fundamentals
-
Enterprise-Wide Application Security
-
Threat Modeling for Developers
-
SC-100: Design security solutions for applications and data
-
OWASP Top 10 - A04:2021 - Insecure Design
-
Attack Tree Vignettes for Containers as a Service Applications - Risk-Centric Threat Modeling
