Version 7.3.30630.5 of the Microsoft Threat Modeling Tool (TMT) was released on June 30 2023 and contains the following changes:
Bug fixes
Accessibility fixes
Known issues
Errors related to TMT7.application file deserialization
Issue
Some customers have reported receiving the following error message when downloading the Threat Modeling Tool:
The threat model file '$PATH\TMT7.application' could not be deserialized. File is not an actual threat model or the threat model may be corrupted.
This error occurs because some browsers don't natively support ClickOnce installation. In those cases the ClickOnce application file is downloaded to the user's hard drive.
Workaround
This error will continue to appear if the Threat Modeling Tool is launched by double-clicking on the TMT7.application file. However, after bypassing the error the tool will function normally. Rather than launching the Threat Modeling Tool by double-clicking the TMT7.application file, users should utilize shortcuts created in the Windows Menu during the installation to start the Threat Modeling Tool.
This learning path takes you through the four main phases of threat modeling, explains the differences between each data-flow diagram element, walks you through the threat modeling framework, recommends different tools and gives you a step-by-step guide on creating proper data-flow diagrams.