A new version of Threats Manager Studio (TMS) and of its Extensions is out. This version fixes some of the problems found with the latest version of TMS, released just one week ago, and a few other things. More specifically:

  • [Improved] Updated embedded Web Browser to be based on Edge Chromium.
  • [Bug] Crash on load due to empty Threat Model.
  • [Bug] Crash when evaluating Auto Mitigation assignment rules.
  • [Bug] Context menus in Item Editor do not work.
  • [Bug] Create Entity Template form does not have enough space for the icons.
  • [Bug] Open and Save dialogs change the current folder when they should not.
  • [Bug] In the Threat Event List, changes of the Control Type for a Mitigation does not update the value in the table.
  • [Bug] Threat Models stored in network files are not fully supported, but there is nothing preventing using them. Now TMS raises warning “The selected document cannot be opened, most probably because its location is not supported.”.
  • [Bug] Annotations export does not generate a correct CSV.
  • [Bug] Entities having name containing the word “Process” are wrongly identified as violating the Default Name Quality rule.

As usual, you can find the downloads from Downloads.

Please reinstall TMS and all the Extensions over the previous ones.
There is no need to uninstall what you had previously. Please ensure to update all the installed Extensions, because you may otherwise get some of the problems listed in the Startup page under Troubleshooting.

I have been a Consultant with Microsoft for 15 years and so. As such, I have gained strong competencies around Software Architectures and Methodologies with a focus on Microsoft technologies. I have been working for Microsoft in the Consultancy department since January 2000 mainly for Customers in the Financial sector. Now I am a Senior Premier Field Engineer on Security. In this role I am helping customers in adopting Microsoft Security Products, Technologies and Methodologies. Application Security is one of my main area of interests, even before joining Microsoft: the very reason why I have been hired by Microsoft are a set of articles I have written on Security and specifically on Cryptography between years 1998 and 1999. I am now a member of the Microsoft InfoSecurity Force European Team. As a Microsoft Employee, I have assumed the roles of Developer, Lead Developer, Architect and Microsoft Development Technologies expert. This has allowed me to work for important Banks and Financial Institutions like Intesa SanPaolo, Deutsche Bank, Monte dei Paschi di Siena and Unicredit, and also for P.A. Organizations like INPS, the largest social security and welfare institute in Italy and one of the most important on a European level. The gained experience can be applied to many contexts, not only on Financial Businesses, because it has been mainly focused around technology and soft abilities, like interpersonal awareness and interaction with different people and different organizations. On May 2016 I have assumed the role of Co-Lead of the Worldwide Microsoft Technical Community for the Security Development Lifecycle.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: