Prepare for Assessment

In this chapter, we will review the assessment and threat modeling process that has been introduced in previous chapters. The process has been described at a high level, though presented piece-by-piece, wherever a particular step of the process was relevant to fully understand the background material necessary for assessment. In this chapter, we will go through, in a step-wise fashion, a single example architecture risk assessment (ARA) and threat model. The goal is to become familiar with the process rather than to complete the assessment. In Part II, we will apply these steps more thoroughly to six example architectures in order to fully understand and get some practice in the art and craft of ARA. The example used in this chapter will be completed in Part II.