Akshay on the business of security : Baking Security In: A Comic Strip View of SDL

Friday, February 20, 2009 10:07 AM Akshay Aggarwal

Baking Security In: A Comic Strip View of SDL

So how do you take your average developer who scoffs at security from the careless and brash aka Kevin, to the poster child for good development practices aka Kevlarr. Well, the Microsoft SDL team has the answer for you. The team recently started publishing a series of web comics detailing the travails of the dev team at Contoso who are under attack from the League of Malware. Along the way they battle with foes such as Spam Bot and Social Engineer while getting help from Vigil and Nforcer. Strip 11 of this interesting attempt to socialize security is below:

Socializing security is essential for organizations to drive culture change from FUD to an understanding of security needs. People are most complex part of the security puzzle. Most people take the easy way out and will avoid the things they fear or don’t understand.

- Akshay

Filed under: Security, SDL, Threat Modeling

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

# Anith » Baking Security In: A Comic Strip View of SDL

Friday, February 20, 2009 2:17 PM by Anith » Baking Security In: A Comic Strip View of SDL

PingBack from http://www.anith.com/?p=12147

Name (required)
Your URL (optional)
Comments (required)

Enter Code Here: Required
Remember Me?

About Akshay Aggarwal

Akshay Aggarwal is a security strategist and researcher. He is currently a Practice Manager for Microsoft Information Security’s ACE Team where he leads the information security consulting practice for North America. He is responsible for securing Microsoft’s ecosystem by developing a robust security practice, incubating new service lines & helping enterprise customers develop world-class IT security strategies. Previously as a Senior Security Technologist, Akshay was responsible for conducting architecture design, threat modeling, application security assessments and vulnerability research. He helped Fortune 100 clients evaluate the security of their software products and applications. He has authored several security research papers and been invited to speak at many forums like the RSA Security Conference and Black Hat briefings at Las Vegas. Akshay holds a MS in Computer Science from the University of California at Davis. There, at the renowned Computer Security Lab, he conducted research on Internet worms and intrusion detection systems.

Akshay on the business of security

Search

Tags

Archives

My personal blog

My team blogs

Other blogs

Baking Security In: A Comic Strip View of SDL

Comment Notification

Comments

# Anith » Baking Security In: A Comic Strip View of SDL

Leave a Comment

About Akshay Aggarwal

Akshay on the business of security

Search

Tags

Archives

My personal blog

My team blogs

Other blogs

Baking Security In: A Comic Strip View of SDL

Comment Notification

Comments

# Anith &raquo; Baking Security In: A Comic Strip View of SDL

Leave a Comment

About Akshay Aggarwal

# Anith » Baking Security In: A Comic Strip View of SDL