W3C Threat Modeling Guide and the Threat Model for the Web
- Upcoming
- Tentative
- Breakout Sessions
- Upcoming
- Tentative
- Breakout Sessions
Meeting
As required by the Security and Privacy Questionnaire for the Horizontal Review, when writing security consideration sections that reference RFC 3552, a threat model must be created and the specific elements exported to the Security Consideration sections (but this also applies to privacy, and in general to harms as well).
But how can threat modeling be done in a structured way in practice?
The Threat Modeling Guide answers this question in a practical way and includes a Threat Model for the Web to speed up the work.
Agenda
Chairs:
Simone Onofri, Joe Andrieu
Description:
As required by the Security and Privacy Questionnaire for the Horizontal Review, when writing security consideration sections that reference RFC 3552, a threat model must be created and the specific elements exported to the Security Consideration sections (but this also applies to privacy, and in general to harms as well).
But how can threat modeling be done in a structured way in practice?
The Threat Modeling Guide answers this question in a practical way and includes a Threat Model for the Web to speed up the work.
Goal(s):
The idea is to present the guide and gather feedback.
Materials:
Joining Instructions
Instructions are restricted to W3C users . You need to log in to see them.
Export options
Personal Links
Please log in to export this event with all the information you have access to.
Public Links
The following links do not contain any sensitive information and can be shared publicly.
Feedback
Report feedback and issues on GitHub.
Report feedback and issues on