Threat Modelling Canvas

Map assets, actors, entry points, and trust boundaries with a concise summary to brief stakeholders.

Intended audience

Security architects, product/security partners, platform engineers.

Use cases

Run lightweight threat modelling on new features.
Document boundaries and assumptions before a pen test.
Align teams on mitigations and ownership.

Usage reminder

This is an educational and planning support tool. It is not legal advice and does not replace professional security testing. Use only on systems and data you are permitted to work on.

Screen capture agreement

Only capture when permitted and avoid showing sensitive data. Keep attribution visible in captures.

How to use this template

List assets and their value.
Capture threat actors and likely entry points.
Describe key trust boundaries and the controls in place.
Record mitigations and owners; review the auto-summary.

Replace these steps with domain-specific guidance when the template is implemented.

Exports

Choose PDF, DOCX, or CSV. A consent check will confirm intended use and attribution rules before download.

Autosaves locally. Last updated: Not saved yet

Assets and value

List the assets and why they matter (data sensitivity, availability needs). One per line.

Threat actors

Name specific adversaries or profiles (insider, partner, commodity attacker).

Entry points

Where can the actor start? Web, API, physical, CI/CD, credentials, supply chain. One per line.

Trust boundaries

Boundary crossings and expected controls (authn/z, rate limiting, validation, isolation).

Mitigations and owners

Current or planned mitigations with owners. Note coverage and any gaps that need review.

Auto-generated summary

Protect Customer data lake against External attacker.
Watch the entry point: Public web app login.
Validate controls at the Internet to edge/WAF boundary.
Primary mitigation in place: MFA on admin paths.

Canvas summary

Protect Customer data lake against External attacker. Watch the entry point: Public web app login. Validate controls at the Internet to edge/WAF boundary. Primary mitigation in place: MFA on admin paths.

Use this summary to brief teams and log assumptions. Expand to a full STRIDE or attack tree if risk is high.

Validate mitigations against the riskiest entry point.
Assign owners and due dates for control gaps.
Schedule a review after major architectural changes.

Preparing the page...

Threat Modelling Canvas

Map assets, actors, entry points, and trust boundaries with a concise summary to brief stakeholders.

Intended audience

Security architects, product/security partners, platform engineers.

Use cases

Run lightweight threat modelling on new features.
Document boundaries and assumptions before a pen test.
Align teams on mitigations and ownership.

Canvas summary

Use this summary to brief teams and log assumptions. Expand to a full STRIDE or attack tree if risk is high.

Validate mitigations against the riskiest entry point.

Assign owners and due dates for control gaps.

Schedule a review after major architectural changes.

Threat Modelling Canvas

Intended audience

Use cases

How to use this template

Editable workspace

Auto-generated summary

Canvas summary

Licence and attribution notice

Threat Modelling Canvas

Intended audience

Use cases

How to use this template

Editable workspace

Auto-generated summary

Canvas summary

Licence and attribution notice