DEF CON Forum Site Header Art

Announcement

Collapse
No announcement yet.

DEF CON’s Next Top Threat Model

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • DEF CON’s Next Top Threat Model


    DEF CON’s Next Top Threat Model
    (Formerly Threat Modeling Challenge from DC27)

    Threat Modeling is arguably the single most important activity in an application security program and if performed early can identify a wide range of potential flaws before a single line of code has been written. While being so critically important there is no single correct way to perform Threat Modeling, many techniques, methodologies and/or tools exist.

    As part of our challenge we will present contestants with the exact same design and compare the outputs they produce against a number of categories in order to identify a winner and crown DEF CON’s Next Top Threat Model

    Starts
    August 6, 2021
    Ends
    August 7, 2021
    PGP key: dtangent@defcon.org valid 2020 Jan 15, to 2024 Jan 01 Fingerprint: BC5B CD9A C609 1B6B CD81 9636 D7C6 E96C FE66 156A

  • #2
    Registration is now LIVE!! https://forms.gle/YpkTNZkZ6tyBm1ri6

    Comment


    • #3
      Form was updated so new registrations will receive an email with all design artifacts.

      Here is our FAQ if you would like more information about the contest.
      https://drive.google.com/file/d/1D3l...ew?usp=sharing

      Results are due by 6PM PDT on Saturday August 7th.

      Comment


      • #4
        We had a small QA issue with our form and unfortunately the design artifacts were not included in emails sent to anyone who registered in person at DEF CON. I have emailed everyone from defcon at threatmodel.us, I BCC'd everyone so this may be in your spam folder.

        Also,
        Our SSK developer mistakenly populated DFD Annotation 4 SSK->Inventory MicroService with an incorrect description. The proper description is "SSK calls the inventory microservice to populate the menu. " All other fields for this annotation are correct.

        Comment


        • #5
          Results submission is open. Please use the google form link below. In order to upload files a Google account login is required. If you are not able to login to Google you may email 'defcon at threatmodel.us'

          https://docs.google.com/forms/d/e/1F...z2fGA/viewform

          Comment


          • #6
            noz Do you have any details on the winning submissions you can post?

            Comment

            Working...
            X