Threat Modeling an Implantable Device
An implantable device cannot be patched easily and lives inside a person. Here is how threat modeling has to adapt to those brutal constraints.
Building an Attack Tree for Embedded Hardware
An attack tree breaks a goal into the steps an attacker would take. Here is how to build one for embedded hardware and use it to prioritize defenses.
Defining Trust Boundaries in an IoT Product
Most attacks happen where trust changes hands. Here is how to find and harden the trust boundaries in a connected product.
Mapping an IoT Attack Surface
A connected product’s attack surface spans hardware, firmware, radios, and the cloud. Here is how to map all of it before testing.
Threat Modeling Before the First Board Spin
The cheapest time to fix a security flaw is before the board exists. Here is why threat modeling belongs in the design phase, not after.