Patent · US Active

Threat analysis and modeling during a software development lifecycle of a software application

US8091065B2 · kind B2 · utility

62Cited by

24References

18Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Talhah Munawar Mir · Redmond, US
Anil Kumar Revuru · Bellevue, US
Deepak J. Manohar · Redmond, US
Vineet Batta · Bothell, US

Key dates

Filing date	Sep 25, 2007
Grant date	Jan 3, 2012
Priority date	—
Expiry date	Nov 2, 2030

Classification

Technology area (CPC G)Physics
CPC primaryG06Q10/06
WIPO fieldIT methods for management
WIPO sectorElectrical engineering

Abstract

Systems and methods relating to a method for generating a threat analysis and modeling tool are described. In an implementation, aggregate analysis is performed upon applications of an enterprise for complete risk management of the enterprise. The threat analysis model is generated by defining the application, its attributes and the rules related to the application. An application task list is generated from a common task list for the application. Countermeasures for known attacks pertaining to the application are described in the application task list, which allows the developer to reduce the risk of attacks.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.