OWASP: identifying, communicating, and understanding threats and mitigations within the context of protecting something of value. Threat modeling is to help protect the system 、 Applications 、 Network and service engineering technology, Used to identify potential threats and suggestions, To help achieve safety goals early in the development lifecycle. Microsoft : Threat modeling practices enable development teams to think in a structured way in context 、 Record and discuss the safety impact of system design. Sun Tzu's art of war : know yourself as well as the enemy, you can fight a hundred battles with no danger of defeat I don't know who I am, One win, one lose, I don't know who I am, I don't know who I am, Every battle is doomed. The author has many years of offensive and defensive testing 、 Code security experience, At present, meituan is in charge of infrastructure service certification 、 encryption 、 Security construction in authentication and other fields.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |