Secure Your AI: Threat Modeling

本课程是 Agentic AI Development & Security 专项课程的一部分

位教师：LearningMate

访问权限由 New York State Department of Labor 提供

2个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

2 小时完成

灵活的计划

自行安排学习进度

2个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

2 小时完成

灵活的计划

自行安排学习进度

您将学到什么

Learners will apply threat modeling and architectural analysis to select secret management solutions and mitigate risks in AI systems using STRIDE.

您将获得的技能

要了解的详细信息

可分享的证书

添加到您的领英档案

作业

6 任务¹

AI 评分请参见免责声明

授课语言：英语（English）

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

积累特定领域的专业知识

本课程是 Agentic AI Development & Security 专项课程专项课程的一部分

在注册此课程时，您还会同时注册此专项课程。

向行业专家学习新概念
获得对主题或工具的基础理解
通过实践项目培养工作相关技能
获得可共享的职业证书

该课程共有2个模块

Secure Your AI: Threat Modeling is an intermediate course for architects and engineers tasked with protecting complex AI systems. This course moves beyond reactive security, teaching you to build resilience directly into your designs. You will master the critical architectural decision of secret management by performing a deep-dive comparison of self-hosted solutions like Vault and managed cloud services like AWS Secrets Manager. You will learn to create a full Total Cost of Ownership (TCO) analysis and use compliance and performance data to make a justifiable, portfolio-ready recommendation.

Next, you'll learn to proactively hunt for vulnerabilities by deconstructing system architecture into Data Flow Diagrams and applying the industry-standard STRIDE framework. This systematic process will enable you to identify and mitigate critical threats like Spoofing and Information Disclosure before they can be exploited. Through hands-on, scenario-based projects, you will draft professional security documents, defend your decisions to a simulated review board, and leave the course with the skills to design, build, and maintain secure AI systems.

This module tackles the critical architectural decision of secret management in AI systems. You will first understand the “why”—the security and operational necessity of a dedicated secret store. You will then learn the “what” of the two primary models: on-premise self-hosted (like Vault) versus managed cloud services (e.g., Secrets Manager). Thereafter, the focus shifts to the “how” of comparing them across TCO, compliance, and operational overhead, and learning how to structure a professional recommendation, culminating in the creation of a justified, portfolio-ready technical recommendation.

涵盖的内容

2个视频2篇阅读材料3个作业

2个视频总计11分钟

TCO and Compliance: A Cost-Benefit Deep Dive 5分钟
Architect's Choice: Documenting Your Recommendation 6分钟

2篇阅读材料总计13分钟

Cloud vs. On-Prem: The Secret Management Trade-off 7分钟
Integration and Latency: Prototyping Your Connection 6分钟

3个作业总计35分钟

Hands-On Learning (HOL): Prototype and Compare Solutions 15分钟
Hands-On Learning (HOL): Draft the Technical Recommendation 10分钟
Justification of Secret Management Decision 10分钟

You have secured your system's secrets. Now, it is time to proactively secure its design. This module shifts focus to threat modeling—the systematic process of securing an AI system by design. You will learn the why behind this proactive approach. You will then master the how of deconstructing an architecture into data flows and trust boundaries and the structured what of applying the STRIDE framework to methodically identify and mitigate risks. The module culminates in the “apply” task of creating a real-world threat model for an agent system.