Microsoft released a Threat Analysis and Modeling Tool a few months backĀ found at: http://msdn2.microsoft.com/en-us/security/aa570413.aspx.
Download at: http://www.microsoft.com/downloads/details.aspx?familyid=59888078-9daf-4e96-b7d1-944703479451&displaylang=en.
While this is actually under the ACE Team, it serves a purpose similar to frameworks/tools released by the Patterns & Practices Team. The success of this tool can be measured by the number of people who start downloading these tools and planning for security during design. With this guidance tool, teams can start conversations and stop treating security as an afterthought.
There are a couple entries from the ACE Team blog:
Thread Modeling - Sanity Check List
Application Security Guidance - Session Management
Worth checking out.