Welcome to our Blog

In this article we are going to create a simple Python script that parses a threat model represented as a Graphviz DOT file, and generates a threat model defined in the Open Threat Model standard.

This blog discusses two approaches to threat modeling: architectural-driven threat modeling and feature-driven threat modeling. It highlights the importance of considering security in the design stage and introduces a new library of functional components to enhance the threat modeling process, allowing developers to focus on specific user story-related threats.

The Open Threat Model (OTM) standard is a versatile way to describe threat models, fostering connectivity and interoperability within the Software Development Lifecycle and cybersecurity ecosystem. It enables automation, enhances scalability, and aligns with existing design artifacts, improving threat modeling's maturity and application in various contexts.

In 2021, threat modeling gained significant recognition and adoption, with industry accolades and government recommendations driving its importance. IriusRisk experienced substantial growth in its threat modeling platform, expanding its customer base and team, aiming to simplify and enhance threat modeling practices for secure software development in the future.

Secure design leader doubles down on mission as threat modeling adoption grows

Panel Weighs in on Overcoming Cultural Barriers to Achieve Business Benefits

This comprehensive analysis delves into the architecture of a hospital gas supply control system and remote patient monitoring within the IEC/ANSI 62443 standards framework. It identifies threats, countermeasures, and weaknesses, with specific controls allocated to each component, ensuring security from cloud deployment to IoT devices.

We are excited to announce the release of IriusRisk 4.0.5 which includes these new enhancements and features:

IriusRisk is not in any way affected by CVE-2021-44228, the recent Remote Code Execution vulnerability reported in Log4j