Online Journalism Blog

Comment, analysis and links covering online journalism and online news, citizen journalism, blogging, vlogging, photoblogging, podcasts, vodcasts, interactive storytelling, publishing, Computer Assisted Reporting, User Generated Content, searching and all things internet.

Skip to content

Home
21st Century Newsroom
About OJB
Archives
Books
Contact
Journalism training
Support

Four examples of different threat models

My post on threat models for journalists is quite lengthy, so I thought I’d put the sample threat models from that in their own, separate post. Here they are – note that these are very simple, sketchy threat models and you would want to expand on these. But hopefully they provide a starting point. I’d also recommend checking out this resource from Privacy for Journalists.

A basic threat model for anyone with access to a key social media account – or colleagues who do.

What info do you want to keep? Communication with sources. Why might someone want it? To prevent publicaiton, smear. What can they do? Guess/hack password, phishing, legal avenues. What might happen? Story killed, credibility, trust.

This is an example of a threat model for anyone who deals with protestors, complainants, or others who might be targets of others

What info do you want to keep? Identity/location of sources. Why might someone want it? To intimidate, attack, smear. What can they do? Guess/hack password, phishing, metadata, mobile trail, more. What might happen? Source attacked, imprisoned, trust.

When dealing with whistleblowers, leaks, or sources in oppressive regimes, you need to protect identity and location. Here’s a sample threat model for that.

What info? Documents. Why? To prevent publication, identify sources. What can they do? Guess, hack, phish passwords for cloud services. Legal avenues etc. What might happen? Story killed, credibility damaged, sources don't trust.

When working with documents, you may need to prevent others getting access to them. Here’s a sample threat model for that.

Advertisement

Share this:

Twitter
Email
Facebook
Reddit
Tumblr
LinkedIn
Print

Like this:

Like Loading...

Related

This entry was posted in online journalism and tagged phishing, source protection, sources, surveillance, threat models on July 17, 2014 by Paul Bradshaw.

Post navigation

← Why every journalist should have a threat model (with cats) Hyperlocal Voices: Matthew Duffy, Coventry Culture →

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Connecting to %s

Notify me of new comments via email.

Notify me of new posts via email.

Δ

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Follow Blog via Email

Enter your email address to follow this blog and receive notifications of new posts by email.

Email Address:

Join 2,886 other subscribers

New book out now!

The Online Journalism Handbook

The Online Journalism Handbook 2nd Edition now available on Amazon

Snapchat for Journalists

Get the book: Snapchat for Journalists

My latest ebook

Finding Stories in Spreadsheets

That book on data journalism

That book on scraping

Ebook Scraping for Journalists available on Leanpub

On Twitter

Tweets by paulbradshaw

Tweets about OJB posts

Top Posts

How to: uncover Excel data only revealed by a drop-down menu
It's not all about numbers: 6 ways that data can give you a story lead
Starting a blog? 12 ideas for blog posts
How to: find the data behind an interactive chart or map using the inspector
What is dirty data and how do I clean it? A great big guide for data journalists
Why journalists ditch the thesaurus when it comes to "said" (for new journalism students who don't)
The inverted pyramid of data journalism
How to use the '4 stages of curiosity' as a framework for investigations
How to embed a vertical video from YouTube or Vimeo
Using satellite data for journalism — tips from the experts

Search for:

Blogroll

Andy Dickinson.net
BuzzMachine
Innovations in Newspapers
Journalism degree at Birmingham City University
Journalism.co.uk
MA Online Journalism at Birmingham City University
Online Journalism Blog 2004-2007
PGDip Broadcast Journalism at Birmingham City University
Steve Outing
Teaching Online Journalism

BBC blogging Business citizen journalism community computer aided reporting data journalism ethics facebook faq hyperlocal interactivity investigative journalism journalism law magazines mobile newspapers online audio online journalism online video podcasts radio regulation SEO social media television twitter user generated content video

Archives

Create a free website or blog at WordPress.com.

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

Follow Following
- Online Journalism Blog
- Already have a WordPress.com account? Log in now.

Loading Comments...

Write a Comment...

Email (Required)

Name (Required)

Website

%d bloggers like this: