Talk in English - US at PHP TEK 2025
Track Name:
Wrigley Field
View Slides: https://gamma.app/docs/Fortifying-Your-Defenses-with-Threat-Modeling-irf14g9qy9a05wi
Short URL: https://joind.in/talk/5364e
(QR-Code (opens in new window))
Properly securing your applications and data require an understanding of the threats facing them. Threat modeling is the methodology for identifying and quantifying the threats your application can and will face. There are a number of resources available for performing a threat model but this session will get you started building a strategy from nothing.
Comments
Please login to leave a comment
Eric certainly got folks attention with his opening story... mind blowing results there.
Then a great tour of how to prevent someone telling that same story about YOU in the future, or worse. I took at least one immediate todo in the middle of the talk... and probably a few more when we get home.
great talk covering multiple steps for security threat modeling and testing. particularly enjoyed the opening credit card story
Thanks for the talk! This gave me a lot to think about and how I can bring some of these concepts back to my team and organization.
I really enjoyed this one. Security is one aspect of development and general computering I wish I knew much more about. It's quite scary to discover what's possible, and what some people are actually inflicting upon others. So it's great to hear Eric talk about it, and to give us all the information on how to protect our projects.
Broad coverage for a 1 hour talk.