Threat Modelling with Stride and UML

Threat modeling as part of risk analysis is seen as an essential part of secure systems development. This paper uses a standard case study to illustrate the effects of using an alternative process model (UML activity diagrams) with STRIDE and suggests that using a more modern process diagram can generate a more effective threat model.