| Article ID | Journal | Published Year | Pages | File Type |
|---|---|---|---|---|
| 456623 | Information Security Technical Report | 2010 | 4 Pages |
Abstract
This paper examines ways to improve security architecture by harnessing the executive attention that compliance activities like PCI DSS bring to security and focus that attention toward improving security architecture over the long term. Threat modeling fills a gap between the system's functional requirements and the auditor's checklist, and is used to catalyze this change of focus.
Related Topics
Physical Sciences and Engineering
Computer Science
Computer Networks and Communications
Authors
Gunnar Peterson,