5 Information Disclosure

Confidentiality is often fundamental and information disclosure is when that confidentiality is compromised in some way. Your data is probably your most precious asset; that data might be personally identifiable information (PII) such as the names and addresses of your customers, it might be trade secrets such as a recipe or it could be the company’s finances. Whatever that data is, it needs to be protected adequately and, in this chapter, we look at some of the common threats in this category and how you can mitigate them.

Figure 5.1: Information being leaked

We will start this chapter by briefly looking at some ...

Get Threat Modeling Gameplay with EoP now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Threat Modeling Gameplay with EoP by Brett Crawley

5

Information Disclosure

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly