InterviewStack.io LogoInterviewStack.io

Threat Modeling Methodologies Questions

In depth understanding of systematic threat identification and analysis approaches used during design and architecture review. Candidates should be familiar with multiple threat modeling paradigms such as STRIDE including its categories, the Process for Attack Simulation and Threat Analysis methodology, attack trees, data flow diagram based approaches, and the Operationally Critical Threat Asset and Vulnerability Evaluation approach. Be able to decompose systems, identify attack surfaces and attack paths, prioritize threats by likelihood and business impact, map mitigations to threats, and integrate threat modeling into a secure development lifecycle or architecture governance process.

EasyTechnical
83 practiced
At which points in the Secure Development Lifecycle (SDLC) should threat modeling be performed? Describe a recommended cadence (e.g., project kick-off, architecture review, major changes), and explain how threat modeling artifacts should be versioned and maintained so they stay relevant over time.
MediumSystem Design
83 practiced
Draw or describe a Data Flow Diagram (textual description acceptable) for a microservices-based payment system composed of: frontend, API gateway, payment service, order service, user service, third-party payment processor, and database. Identify trust boundaries and list three components that should be considered privileged or high-value targets, explaining why.
MediumTechnical
84 practiced
In Python, outline and implement an algorithm that, given a directed graph representing a DFD (nodes = components, edges = data flows), returns all simple attack paths from nodes classified as 'external' or 'untrusted' to nodes classified as 'sensitive-data'. Provide a brief explanation of complexity and pruning strategies used. Pseudocode or runnable Python acceptable.
HardTechnical
62 practiced
During an architecture review you discover several chained weaknesses that together enable privilege escalation: an exposed admin endpoint (high exposure), a weak auth policy (medium), and an outdated library with a remote code execution bug (low). Discuss how you would prioritize mitigations, propose immediate and medium-term actions, and explain what residual risk (if any) you would accept and why.
EasyTechnical
123 practiced
Describe what a Data Flow Diagram (DFD) is and explain how DFDs are used in threat modeling. Provide a short textual DFD example (entities, processes, data stores, data flows, trust boundaries) for a user-upload feature in a SaaS application and identify the trust boundaries you would mark.

Unlock Full Question Bank

Get access to hundreds of Threat Modeling Methodologies interview questions and detailed answers.

Sign in to Continue

Join thousands of developers preparing for their dream job.