Normal view MARC view ISBD view

Threat modeling : (Record no. 11450)

MARC details
000 -LEADER
fixed length control field	02446nam a2200229Ia 4500
003 - CONTROL NUMBER IDENTIFIER
control field	NULRC
005 - DATE AND TIME OF LATEST TRANSACTION
control field	20250520100703.0
008 - FIXED-LENGTH DATA ELEMENTS--GENERAL INFORMATION
fixed length control field	250520s9999 xx 000 0 und d
020 ## - INTERNATIONAL STANDARD BOOK NUMBER
International Standard Book Number	9781118809990
040 ## - CATALOGING SOURCE
Transcribing agency	NULRC
050 ## - LIBRARY OF CONGRESS CALL NUMBER
Classification number	QA 76.9.A25 .S567 2014
100 ## - MAIN ENTRY--PERSONAL NAME
Personal name	Shostack, Adam
Relator term	author
245 #0 - TITLE STATEMENT
Title	Threat modeling :
Remainder of title	designing for security /
Statement of responsibility, etc.	Adam Shostack
260 ## - PUBLICATION, DISTRIBUTION, ETC.
Place of publication, distribution, etc.	Indianapolis, Indiana :
Name of publisher, distributor, etc.	John Wiley & Son, Inc.,
Date of publication, distribution, etc.	c2014
300 ## - PHYSICAL DESCRIPTION
Extent	xxxiii, 590 pages :
Other physical details	illustrations ;
Dimensions	24 cm.
365 ## - TRADE PRICE
Price amount	USD484.04
504 ## - BIBLIOGRAPHY, ETC. NOTE
Bibliography, etc. note	Includes bibliographical references and index.
505 ## - FORMATTED CONTENTS NOTE
Formatted contents note	Part 1. Getting started -- 1. Dive in and threat model! -- 2. Strategies for threat modeling -- Part 2. Finding threats -- 3. Stride -- 4. Attack trees -- 5. Attack libraries -- 6. Privacy tools -- Part 3. Managing and addressing threats -- 7. Processing and managing threats -- 8. Defensive tactics and technologies -- 9. Trade-offs when addressing threats -- 10.Validating that threats are addressed -- 11.Threat modeling tools -- Part 4. Threat modeling in technologies and tricky areas -- 12. Requirements cookbook -- 13. Web and cloud threats -- 14. Accounts and identity -- 15. Human factors and usability -- 16. Threats to cryptosystems -- Part 5. Taking it to the next level -- 17. Bringing threat modeling to your organization -- 18. Experimental approaches -- 19. Architecting for success.
520 ## - SUMMARY, ETC.
Summary, etc.	Adam Shostack is responsible for security development lifecycle threat modeling at Microsoft and is one of a handful of threat modeling experts in the world. Now, he is sharing his considerable expertise into this unique book. With pages of specific actionable advice, he details how to build better security into the design of systems, software, or services from the outset. You'll explore various threat modeling approaches, find out how to test your designs against threats, and learn effective ways to address threats that have been validated at Microsoft and other top companies. Systems security managers, you'll find tools and a framework for structured thinking about what can go wrong. Software developers, you'll appreciate the jargon-free and accessible introduction to this essential skill. Security professionals, you'll learn to discern changing threats and discover the easiest ways to adopt a structured approach to threat modeling.
650 ## - SUBJECT ADDED ENTRY--TOPICAL TERM
Topical term or geographic name entry element	COMPUTER NETWORKS -- SECURITY MEASURES
942 ## - ADDED ENTRY ELEMENTS (KOHA)
Source of classification or shelving scheme	Library of Congress Classification
Koha item type	Books

Holdings
Withdrawn status	Lost status	Source of classification or shelving scheme	Damaged status	Not for loan	Collection	Home library	Current library	Shelving location	Date acquired	Source of acquisition	Cost, normal purchase price	Total checkouts	Full call number	Barcode	Date last seen	Copy number	Price effective from	Koha item type
		Library of Congress Classification			Gen. Ed. - CCIT	LRC - Graduate Studies	National University - Manila	General Circulation	03/24/2015	Purchased - Amazon	484.04		GC QA 76.9.A25 .S567 2014	NULIB000009209	05/20/2025	c.1	05/20/2025	Books