Threat Modeling Web Applications This looks quite interesting, and something we might want to have a look at for our development processes.