Navigation

Services: Application Assessment; Code or Design Review; Security Awareness; Threat Analysis
Products: Acunetix WVS; KFSensor Honeypot; MOBILedit! Forensic; Passware; Sawmill Analytics; Sunbelt Software
People: Management
Contact

Latest news

Astyran adds Acunetix WVS to its suite of products(01/12/2008)

Astyran is proud to announce that it is now an official partner and reseller of Acunetix. Stay tuned for an update.

eBanking Fraud and Cyber Security Seminar(06/03/2008)

Mr. Stevens, founder and owner of Astyran, presented his insights in source code reviews at the eBanking Fraud and Cyber Security Seminar of the Monetary Authority of Singapore (MAS).

Owasp/ISSA joint meeting (20/11/2007)

Mr. Frantzen and Herman Stevens delivered a much appreciated and discussed presentation on Application Security Awareness Training for developers at the joint meeting of the Belgian ISSA and OWASP chapters. You can download the presentation here, there (OWASP) and there (ISSA).

Threat Analysis

Overview

What is threat analysis or threat modelling and how does it benefit me?

A threat can be defined as any condition, circumstance, incident or person with the potential to cause harm by exploiting a vulnerability in a system.

The purpose of a threat model is to document all possible threats against an application with the goal of implementing countermeasures at the design level where feasible.

International standards about risk management always document the necessity to perform an analysis of the threats. Astyran can help you analyse the threats to your business processes. Threats can be categorized as standard threats, common to all applications or threats that are really specific to your application.

Generic threats and risks may be handled by standard countermeasures while specific threats will require special care and consideration. The creation of a threat model helps the development team consider the security threats that your applicaion will face and supports the development of mitigation strategies in the design and architecture phase of the development cycle.

Threat analysis and modelling also greatly improves communication between business and technical level withing your company.

Key Differentiators

What makes us stand out from the crowd?

Asytran consultants have a deep understanding of the security of applications and a large experience and insight in IT processes.

A threat model is often created by having multiple brainstorming sessions with key staff members of business or development departements.

Application Assessment

Tired of looking at incomprehensible technical reports about the security of your applications without any business relevance? Need a business driven approach?

Code Review

External pressure for code review? Outsourced development of high risk application? A full code review too expensive? Let us mitigate your development risks by our cost-effective and risk based approach.

Security Awareness

Need a trainer or need help creating your awareness program? We can assist you with all aspects of your awareness initiatives for development teams.