[CincyPG] CPG Wed. 6:30p: Threat Analysis and Modeling for Programmers
Troy Davis
troy at digissance.com
Mon Nov 17 22:31:08 EST 2008
THIS Wednesday, Nov. 19th, 6:30 pm
Threat Analysis and Modeling for Programmers
Russ McMahon
MAX Technical Training - http://www.maxtrain.com/directions/#CincinnatiMason
Security is a big issue and all too often it is only thought of as it
applies to the network administrator. However, programmers face a host
of threats to their applications. The solution is to build a threat
model. The purpose of a threat model is to aid in identifying
potential threats before a system is built, not after. This talk will
cover some of the common threats to applications and how to prevent
them. This talk is based upon Microsoft's Threat Analysis and Modeling
(TAM) tool which is free. This tool has been used by Ford and Boeing
as part of their information life cycle process. Additional resources
will also be given.
Russell McMahon is an associate professor of IT at the College of
Applied Science, University of Cincinnati. He teaches programming and
database administration using C# and SQL Server. He is also actively
involved in many of the IT-related users groups in the Cincinnati area
and is a long-time council member and current President of the
Cincinnati Programmers Guild. Russ is also interested in the history
of computing and is currently researching UC's computing history.
Please rsvp: info at cincypg.org
More information about the CincyPG
mailing list