This is the threat model for the project (Sample). A threat model aims to answer the question "What could go wrong?" for the scope of the project, and for everything that can go wrong (threats), there should a mitigation that is verified and tested. More details on How To Use This Template?

<aside> 💡 This is a sample Threat Model for an imaginary service. The steps to create this Threat model are explained in detail in the Threat Modeling Handbook.

</aside>

Contents

How To Use This Template?

Next Actions

• [x] Complete Phase 1
  • [x] Complete Step 1 - Scope and Design
  • [x] Complete Step 2 - Decompose
  • [x] Complete Step 3 - Identify High-level Risks
  • [x] Complete Step 4 - Identify Threats and Mitigations
• [ ] Complete Phase 2
  • [ ] Complete Step 5 - Verify Mitigations
• [ ] Complete Phase 3
  • [ ] Complete Step 6 - Create Tests to Continuously Verify Mitigations

Action Items

Action items - @Threat Model | File Upload Service (Sample)

Step 1 - Scope and Design

Step 2 - Decompose

Step 3 - Identify High Level Risks

Step 4 - Identify Threats and Mitigations

Step 5 - Verify Mitigations

Step 6 - Create Tests to Continuously Verify Mitigations