Enter the CyberSec Game Challenge!
1 5

LINDDUN GO Privacy Threat Modeling Cards

£16.00 £20.00

Description

LINDDUN GO is a collaborative card game designed to help teams identify privacy threats in software systems. It simplifies the traditional LINDDUN framework, making it suitable for people who are new to threat modeling, but at the same time providing a sufficient level of thoroughness.

This latest version builds upon a comprehensive update to the LINDDUN privacy threat knowledgebase. These cards feature an enhanced selection of privacy focus areas, augmented guidance, and vivid examples. 

Each card has a structured layout ensuring non-experts can meaningfully contribute, cross-functional teams can collaborate using a shared language, and threat identification is both comprehensive and systematic. 

For more information about the game, go to https://www.linddun.org/go

Bulk Pricing

Automatically applied at checkout:

Buy Discount
5 or more decks 10% off
10 or more decks 15% off
20 or more decks 20% off
30 or more decks 30% off

Outcome

Identify Privacy work that needs doing earlier in the project lifecycle. Defuse difficult relationships. Build trust. Bring teams together in peace and harmony.

Made by Agile Stationery

Experts in delivering the right kind of conversations. Slick cards in robust boxes. The best there is outside the casinos.

Specifications
  • Suits
    Linkability, Identifiability, Non-Repudiation, Detectability, Disclosure of Information, Unawareness, Non-Compliance
  • # Cards
    33
  • Created by
    KU Leuven

Try a branded version

If you'd like to encourage the use of this technique within your team or organisation, a branded deck is a great way to demonstrate your support and commitment to the process.

What are the steps in LINDDUN GO?

  • 1. Model the system

    Start by creating a Data Flow Diagram (DFD) that maps out data flows, processes, external actors, data stores, and trust boundaries. This provides a clear view of the system for analysis.

  • 2. Elicit Privacy threats

    Review each interaction in the DFD to uncover potential privacy risks. This step involves systematically assessing how data flows might lead to threats like linkability or unauthorised access.

  • 3. Manage identified threats

    Prioritise the identified threats based on impact or likelihood, then decide on appropriate mitigations—whether through design changes, controls, or policy.

How to play LINDDUN GO?

Initiate the Session: The first participant draws a random threat card and presents it to the group.

Assess the Threat: Using the system sketch, evaluate whether the threat described on the card is applicable. Consider the card's elicitation questions and hotspot indicators.

Document Identified Threats: If a threat is deemed relevant, record it for further analysis and mitigation planning.

Collaborative Input: Other participants can contribute additional insights or identify overlooked threats related to the card.

Proceed to Next Card: Once discussions on the current card conclude, the next participant draws a new card, and the process repeats.

Conclude the Session: The game ends when all cards have been reviewed.

LINDDUN GO Card layout


What makes LINDDUN GO unique is the power packed into each card.

The detail on each card, refined through hands-on testing and real world feedback, is there to spark insight and drive discussion.

  • Hotspot - where the threat occurs in the system
  • Clear explanation of the threat
  • Elicitation questions to help determine if the threat applies
  • Examples illustrating the threat
  • Information on the why the threat is important (impact / consequences)

From the clear structure to the carefully crafted prompts, the cards are designed to help players spot privacy threats with confidence and clarity.

Subheading

Hybrid Teams? No problems.

We developed a style of play where everyone has the physical deck, but plays the game through video conferencing.

Why? How?
Back to top