OpenThreatModel
OpenThreatModel copied to clipboard
iriusrisk
The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
I've noticed in EXAMPLE.json there is examples of `package` elements in `representation` elements. This addresses that, as filed as issue: https://github.com/iriusrisk/OpenThreatModel/issues/28
This is referenced in https://github.com/iriusrisk/OpenThreatModel/blob/main/EXAMPLE.json#L177
Discussions aren't active so I figure I'd start the thread here. Are there plans to pursue OTM under one of the standards bodies? While the standard itself seems reasonable, pushing...
There is an issue raised on Threat Dragon : [Use OTM as the default file format #850](https://github.com/OWASP/threat-dragon/issues/850) Threat Dragon can already read OTM files and apples a schema, but is...
Extend AssetRisk to have a privacy attribute so it doesn't need to be conflated with confidentiality and can be explicitly called out.
Dear Team, The current syntax captures type and id of the parent and represents it as a map entry like syntax where the value of the key entry encodes the...
