{"id":26,"date":"2014-04-15T10:09:58","date_gmt":"2014-04-15T10:09:58","guid":{"rendered":"http:\/\/marcbook.local\/wds\/playground\/cybertrust\/2014\/04\/15\/new-microsoft-threat-modeling-tool-2014-now-available\/"},"modified":"2023-05-15T23:07:08","modified_gmt":"2023-05-16T06:07:08","slug":"new-microsoft-threat-modeling-tool-2014-now-available","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2014\/04\/15\/new-microsoft-threat-modeling-tool-2014-now-available\/","title":{"rendered":"New Microsoft Threat Modeling Tool 2014 Now Available"},"content":{"rendered":"

Today we\u2019re announcing the release of the Microsoft Threat Modeling Tool 2014<\/a><\/strong>. This is the latest version of the free Security Development Lifecycle Threat Modeling Tool <\/a>that was previously released back in 2011.<\/p>\n

More and more of the customers I have been talking to have been leveraging threat modeling as a systematic way to find design-level security and privacy weaknesses in systems they are building and operating. Threat modeling is also used to help identify mitigations that can reduce the overall risk to a system and the data it processes. Once customers try threat modeling, they typically find it to be a useful addition to their approach to risk management.<\/p>\n

We have been threat modeling at Microsoft for more than 10 years. It is a key piece of the design phase of the Microsoft Security Development Lifecycle <\/a>(SDL).\u00a0 In 2011 we released the SDL Threat Modeling Tool, free of charge, to make it easier for customers and partners to threat model as part of their software development processes. The tool has been very popular and we have received a lot of positive customer feedback in addition to suggestions for improvement.<\/p>\n

We have implemented many of the suggested improvements in the new version of the tool, now called the Microsoft Threat Modeling Tool 2014<\/a>.\u00a0 Highlights of the new features in Microsoft Threat Modeling Tool 2014 include:<\/p>\n