Target New ArrivalsFourth of JulyGift Ideas for DadClothing, Shoes & AccessoriesHome & DecorKitchen & DiningOutdoor Living & GardenGroceryHousehold EssentialsBabyBeautyPersonal CareSports & OutdoorsHealthWellnessLuggageSchool & Office SuppliesToys & GamesElectronicsVideo GamesMovies, Music & BooksParty SuppliesGift IdeasGift CardsPetsUlta Beauty at TargetShop by CommunityTarget OpticalDealsClearanceNew ArrivalsGift Ideas for DadBack to SchoolCollegeTop DealsTarget Circle DealsWeekly AdShop Order PickupShop Same Day DeliveryRegistryRedCardTarget CircleFind Stores
Threat Modeling Gameplay with EoP - by Brett Crawley (Paperback) - 1 of 1

Threat Modeling Gameplay with EoP - by Brett Crawley (Paperback)

$41.99

In Stock

Free & easy returns

Free & easy returns

Return this item by mail or in store within 90 days for a full refund.
Eligible for registries and wish lists

Save 5% every day

With Target Circle™ Card

About this item

Highlights

  • Work with over 150 real-world examples of threat manifestation in software development and identify similar design flaws in your systems using the EoP game, along with actionable solutionsKey Features: - Apply threat modeling principles effectively with step-by-step instructions and support material- Explore practical strategies and solutions to address identified threats, and bolster the security of your software systems- Develop the ability to recognize various types of threats and vulnerabilities within software systems- Purchase of the print or Kindle book includes a free PDF eBookBook Description: Are you looking to navigate security risks, but want to make your learning experience fun?
  • Author(s): Brett Crawley
  • 256 Pages
  • Computers + Internet, Security

Description



About the Book



This book helps you to explore software security through gamified threat modeling, uncovering risks while making it enjoyable. You'll learn to identify, mitigate, and defend against threats, enhancing your system's security.



Book Synopsis



Work with over 150 real-world examples of threat manifestation in software development and identify similar design flaws in your systems using the EoP game, along with actionable solutions

Key Features:

- Apply threat modeling principles effectively with step-by-step instructions and support material

- Explore practical strategies and solutions to address identified threats, and bolster the security of your software systems

- Develop the ability to recognize various types of threats and vulnerabilities within software systems

- Purchase of the print or Kindle book includes a free PDF eBook

Book Description:

Are you looking to navigate security risks, but want to make your learning experience fun? Here's a comprehensive guide that introduces the concept of play to protect, helping you discover the threats that could affect your software design via gameplay.

Each chapter in this book covers a suit in the Elevation of Privilege (EoP) card deck (a threat category), providing example threats, references, and suggested mitigations for each card. You'll explore the methodology for threat modeling-Spoofing, Tampering, Repudiation, Information Disclosure, and Elevation of Privilege (S.T.R.I.D.E.) with Privacy deck and the T.R.I.M. extension pack. T.R.I.M. is a framework for privacy that stands for Transfer, Retention/Removal, Inference, and Minimization. Throughout the book, you'll learn the meanings of these terms and how they should be applied. From spotting vulnerabilities to implementing practical solutions, the chapters provide actionable strategies for fortifying the security of software systems.

By the end of this book, you will be able to recognize threats, understand privacy regulations, access references for further exploration, and get familiarized with techniques to protect against these threats and minimize risks.

What You Will Learn:

- Understand the Elevation of Privilege card game mechanics

- Get to grips with the S.T.R.I.D.E. threat modeling methodology

- Explore the Privacy and T.R.I.M. extensions to the game

- Identify threat manifestations described in the games

- Implement robust security measures to defend against the identified threats

- Comprehend key points of privacy frameworks, such as GDPR to ensure compliance

Who this book is for:

This book serves as both a reference and support material for security professionals and privacy engineers, aiding in facilitation or participation in threat modeling sessions. It is also a valuable resource for software engineers, architects, and product managers, providing concrete examples of threats to enhance threat modeling and develop more secure software designs. Furthermore, it is suitable for students and engineers aspiring to pursue a career in application security. Familiarity with general IT concepts and business processes is expected.

Table of Contents

- Game Play

- Spoofing

- Tampering

- Repudiation

- Information Disclosure

- Denial of Service

- Elevation of Privilege

- Privacy

- Transfer

- Retention/Removal

- Inference

- Minimization

- Glossary

- Further Reading

Dimensions (Overall): 9.25 Inches (H) x 7.5 Inches (W) x .54 Inches (D)
Weight: .98 Pounds
Suggested Age: 22 Years and Up
Number of Pages: 256
Genre: Computers + Internet
Sub-Genre: Security
Publisher: Packt Publishing
Theme: Viruses & Malware
Format: Paperback
Author: Brett Crawley
Language: English
Street Date: August 9, 2024
TCIN: 1011993205
UPC: 9781804618974
Item Number (DPCI): 247-33-6809
Origin: Made in the USA or Imported
If the item details aren’t accurate or complete, we want to know about it.

Shipping details

Estimated ship dimensions: 0.54 inches length x 7.5 inches width x 9.25 inches height
Estimated ship weight: 0.98 pounds
We regret that this item cannot be shipped to PO Boxes.
This item cannot be shipped to the following locations: American Samoa (see also separate entry under AS), Guam (see also separate entry under GU), Northern Mariana Islands, Puerto Rico (see also separate entry under PR), United States Minor Outlying Islands, Virgin Islands, U.S., APO/FPO, Alaska, Hawaii

Return details

This item can be returned to any Target store or Target.com.
This item must be returned within 90 days of the date it was purchased in store, delivered to the guest, delivered by a Shipt shopper, or picked up by the guest.
See the return policy for complete information.

Q: What additional resources come with the book purchase?

submitted by AI Shopping Assistant - 4 days ago

  • A: Purchasing the print or Kindle version includes a free PDF eBook for additional reference.

    submitted byAI Shopping Assistant - 4 days ago
    Ai generated

Q: What is the main focus of the book?

submitted by AI Shopping Assistant - 4 days ago

  • A: The book focuses on exploring software security through gamified threat modeling and identifying risks in software development.

    submitted byAI Shopping Assistant - 4 days ago
    Ai generated

Q: How many real-world examples are included?

submitted by AI Shopping Assistant - 4 days ago

  • A: The book includes over 150 real-world examples of threat manifestation in software development.

    submitted byAI Shopping Assistant - 4 days ago
    Ai generated

Q: What methodologies are covered in the book?

submitted by AI Shopping Assistant - 4 days ago

  • A: It covers the S.T.R.I.D.E. threat modeling methodology and the T.R.I.M. framework for privacy.

    submitted byAI Shopping Assistant - 4 days ago
    Ai generated

Q: Who is the intended audience for this book?

submitted by AI Shopping Assistant - 4 days ago

  • A: The book is aimed at security professionals, software engineers, architects, product managers, and students interested in application security.

    submitted byAI Shopping Assistant - 4 days ago
    Ai generated
See all questions (5)

Additional product information and recommendations

Discover more options

Best-selling Computers & Technology Books

Get top deals, latest trends, and more.

Privacy policy