A Hybrid Approach to Threat Modelling 

Abstract and Figures

Threat Modelling is considered the fundamental approach in identifying security weakness in software applications during the design phase in Software Development Lifecycle process. Various techniques have been published for performing threat modelling including STRIDE, Attack Tree, and Attack Library. Organizations tend to lean towards a single technique to perform their modelling exercise. Each of these techniques is weighed down by limitations, hence when implemented individually impacts the effectiveness and comprehensiveness of the exercise. However, in order to achieve meaningful output it is imperative to use each of these techniques appropriately to the corresponding activity in the threat modelling exercise. This paper analyses the various limitations in each of these techniques and presents a hybrid model that eliminates these limitations by adopting a structured approach, capturing optimum details, and representing the data in an intelligible way.