Security

Security

How to address threats, attacks, vulnerabilities, and countermeasures.

Security Approaches That Don’t Work

Photo by CarbonNYC If it’s not broken, then don’t fix it ... The problem is, you may have an approach that isn’t working, or it’s not...

Visual Threats and Countermeasures

While working on patterns & practices Security guidance, I pushed the idea of "Visual Threats and Countermeasures."  I wanted a simple way to...

Security Frame

While working on Improving Web Application Security: Threats and Countermeasures, my team created the software security frame.  We used the Security Frame to organize...

Quality Attribute List

When thinking about quality, I tend to draw from the following quality attributes: Availability Buildability Conceptual Integrity Evolvability Extensibility...

Threats, Attacks, Vulnerabilities, and Countermeasures

What’s the difference between software threats, attacks, and vulnerabilities?  While working on Improving Web Application security, we found a lot of confusion, so we...