A final reminder...
W2SP 2010: Web 2.0 Security and Privacy 2010
Thursday, May 20
The Claremont Resort, Oakland, California
Web site: http://w2spconf.com/2010
The workshop chairs would like to invite you attend the 4th annual
workshop on Web 2.0 Security and Privacy. Started in 2007, this
Are people using threat modeling for their clients? I just started having
an interest in it with my clients and it is amazing on what you find with
threat modeling. I have been using the Microsoft Threat Analysis tool.
What other tools are people using?
Thanks,
Matt
Matt Parsons,
hi sc-l,
In March 2009 we announced the publication of the BSIMM---a measuring stick for
software security. We're pleased today to announce the publication of BSIMM2.
We have tripled the size of the data set to thirty firms, including: Adobe,
Aon, Bank of America, Capital One, The Depository
hi matt,
In BSIMM2 (which launched today), there are some real data under the
Architecture Analysis practice which show exactly how common (or not) 10
threat modeling activities are in our population of 30 firms. For the actual
data, see
http://bsimm2.com/facts/ (or better yet, download
