Next Article in Journal
Subjective Well-Being, Active Travel, and Socioeconomic Segregation
Previous Article in Journal
Renewable Energy in Policy Frameworks: A Comparative Analysis of EU and Global Strategies for Sustainable Development
 
 
Search for Articles:
Title / Keyword
Author / Affiliation / Email
Journal
Article Type
 
 
Advanced Search
 
Section
Special Issue
Volume
Issue
Number
Page
 
Journals
Sustainability
Volume 17
Issue 23
10.3390/su172310569
sustainability-logo
Submit to this Journal Review for this Journal Propose a Special Issue
Article Menu

Article Menu

share Share announcement Help format_quote Cite question_answer Discuss in SciProfiles
first_page
settings
Order Article Reprints
Font Type:
Arial Georgia Verdana
Font Size:
Aa Aa Aa
Line Spacing:
Column Width:
Background:
This is an early access version, the complete PDF, HTML, and XML versions will be available soon.
Article

Towards a Sustainable Cybersecurity Governance: Threat Modelling with Large Language Models

by
Nika Jeršič
*,
Muhamed Turkanović
and
Tina Beranič
*
Faculty of Electrical Engineering and Computer Science, University of Maribor, Koroška Cesta 46, 2000 Maribor, Slovenia
*
Authors to whom correspondence should be addressed.
Sustainability 2025, 17(23), 10569; https://doi.org/10.3390/su172310569
Submission received: 3 October 2025 / Revised: 12 November 2025 / Accepted: 20 November 2025 / Published: 25 November 2025
(This article belongs to the Section Sustainable Engineering and Science)
Versions Notes

Abstract

With the increased complexity of applications and systems, threat modelling struggles to keep pace with the evolution of risks. This article addresses this challenge by exploring how large language models (LLMs) can be leveraged to create comprehensive threat models across different risk assessment methodologies. We examine whether a single generic prompt can support frameworks such as LINDDUN, PASTA, and STRIDE, despite their different requirements. Through this comparative analysis, we identify components that enable AI-based assessments, while acknowledging that privacy, regulatory, and dynamic risks require adaptation of the frameworks. Our findings show that a universal guideline is feasible for broad applications, but adaptation is necessary for effective use. Overall, LLM-based threat modelling improves the accessibility, repeatability, and effectiveness of risk analysis and supports stronger and more sustainable practices.
Keywords: cybersecurity; large language models; threat modelling; sustainability; SDG 9; resilient infrastructure cybersecurity; large language models; threat modelling; sustainability; SDG 9; resilient infrastructure

Share and Cite

MDPI and ACS Style

Jeršič, N.; Turkanović, M.; Beranič, T. Towards a Sustainable Cybersecurity Governance: Threat Modelling with Large Language Models. Sustainability 2025, 17, 10569. https://doi.org/10.3390/su172310569

AMA Style

Jeršič N, Turkanović M, Beranič T. Towards a Sustainable Cybersecurity Governance: Threat Modelling with Large Language Models. Sustainability. 2025; 17(23):10569. https://doi.org/10.3390/su172310569

Chicago/Turabian Style

Jeršič, Nika, Muhamed Turkanović, and Tina Beranič. 2025. "Towards a Sustainable Cybersecurity Governance: Threat Modelling with Large Language Models" Sustainability 17, no. 23: 10569. https://doi.org/10.3390/su172310569

APA Style

Jeršič, N., Turkanović, M., & Beranič, T. (2025). Towards a Sustainable Cybersecurity Governance: Threat Modelling with Large Language Models. Sustainability, 17(23), 10569. https://doi.org/10.3390/su172310569

Note that from the first issue of 2016, this journal uses article numbers instead of page numbers. See further details here.

Article Metrics

Back to TopTop