Graphical editor for creating new DFD models.
Enriching the DFD models with security solutions, which are taken into account during the threat elicitation.
Import and reuse existing security solutions across multiple models. Threat catalogs can be customised and reused across projects as well.
Automatically generate threats for the DFD model, taking into account all the existing security countermeasures and the threats they prevent.
Automatically perform a risk analysis for each elicited threat.
DFD meta-model and security solution meta-model are made in Eclipse Ecore.
Graphical DFD model editor built on sirius.
DFD pattern matching for the threat elicitation.
DFD model correctness checks are written in AQL
Risk analysis uses the Risk components from FAIR (Factor Analysis of Information Risk)