The AttackDefense Framework (ADF)
We release the AttackDefense Framework (ADF), a threat modeling framework for IoT devices and their life cycles. The ADF employs a flexible and generic threat data structure called the AttackDefense (AD) object. An AD can model attack and defense aspects, like attack vectors, surfaces, models and defense policies and mechanisms, at the same time.
With the ADF, we can model, among others, security, privacy, hardware, software, firmware, and protocol threats to a device (e.g., a crypto wallet) and threats to the device’s life cycle (e.g., supply chain attacks while implementing a device).
The ADF block diagram includes four components used to enhance threat modeling:
For more details about the ADF, look at:
Let’s Threat Model All the Things!