Expanding the Toolset: Taking Threat Modeling Offline for IRL Human Application
About this session
Expanding from the introduction of this topic at ThreatModCon 2023, this session delves into how technical threat modeling enhances security assessments in human-organizational contexts. Exploring bidirectional influence between technical and non-technical realms, we'll discuss using data flow diagrams to map human networks. We'll also investigate leveraging socio-political, economic, and legal factors to prioritize mitigation, fostering proactive harm reduction. Drawing from over a decade of research, we'll advance methods for both technical and non-technical users, enabling an intersectional approach suitable for diverse risk scenarios.