Back To Schedule
Thursday, August 29 • 1:30pm - 2:00pm
Threat Modelling and Black Swans - Predicting the unpredictable by thinking like an attacker

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Threat modelling is a useful tool for improving the security of a system at design time and for developing effective test plans. Unfortunately, it's very common for threat models to concentrate heavily on technical attacks and what are traditionally accepted as common attack types, while avoiding social engineering, physical and other more unusual or less technical attacks. This often results in limited test coverage or a failure to anticipate the full range of threats.
This talk will explain a methodology for building threat models that combine typical technical threats with unexpected 'Black Swan' events, using real-world examples to illustrate the process.

avatar for Nick Dunn

Nick Dunn

Nick Dunn is a secure software developer, turned penetration tester and an occasional developer of hacking tools and scripts. His work and interests include threat modelling, machine learning and secure software devlopment practices.He works for NCC Group, is the developer of VCG... Read More →

Thursday August 29, 2019 1:30pm - 2:00pm BST
Track 3