Security

Security

How to address threats, attacks, vulnerabilities, and countermeasures.

STRIDE Explained

STRIDE is an acronym to help you think about potential software security threats and attacks.  It helps you think evil (i.e. like an attacker.) ...

Security Principles

If you know the underlying principles for security, you can be more effective in your security design.  While working on Improving Web Application Security:...

Secure Your Network, Host, and Application

  Having a frame of reference for how to think about security helps you cut through information overload.  While working on our patterns & practices...

Security Frame

While working on Improving Web Application Security: Threats and Countermeasures, my team created the software security frame.  We used the Security Frame to organize...

Visual Threats and Countermeasures

While working on patterns & practices Security guidance, I pushed the idea of "Visual Threats and Countermeasures."  I wanted a simple way to...