When it comes to privacy, one of the first things people mention is threat modeling. However, searching up how to do threat modelling shows me results targeted at people with some technical knowledge.
I am unfortunately not one of those people. So I’m left wondering how a non-technical person can come to develop a threat model. Is this even possible? If not, how much would I need to dedicate to develop the technical skills needed to create one? Which ones would be beneficial to focus on? And, since I imagine one can develop those skills indefinitely, what are the different stages one might expect to reach and what would be important to reach each one?
Maybe I’m asking for a deeper guide than can be answered on Lemmy. If so, I hope it’ll at least inspire someone to write that guide.
Threat modeling is simply knowing where potential threats to yourself comes from, and planning accordingly. Most of us have some sort of risk of surveillance capitalism. Companies tracking you across sites, Ai scanning your email and photos, that sort of thing. As creepy as that is, if someone is targeting you specifically as a stalker or trying to break into your accounts, or physically into your home, that will be more important to model for. The things you to to. mitigate one thing may not be the same as something else. Sometimes they can be almost opposite actions, though there are certainly best practices to have in general.
If you know your threat model, you can find guides online of how to plan for it, and you can ask communities online more specific questions if you know what you are asking FOR.