Microsoft's Security Development Lifecycle describes how we engineer security into our products. Earlier this year, Security Program Manager Mark Shlimovich wrote a detailed whitepaper about how SDL was applied to IE8, providing "behind the scenes" insights into the security engineering that went into...

Security researchers at Microsoft release a biannual "Intelligence Report" containing statistics about the software-related security incidents over the past 6 months. This report is called the SIR , and the latest version can be found here . There are many interesting charts and data points in the report...

A friend recently wrote to me, alarmed that the SmartScreen Filter feature was constantly turning off on his laptop with IE8. Despite manually re-enabling the feature using the Safety menu multiple times per hour, it was mysteriously and repeatedly turned off without any action on his part. He was...

From the things that make you go hmm.... department: http://personal.fidelity.com/misc/buffers/coming-soon-identity.shtml.cvsr Choose a question like “In what city was your high school?” then enter the answer. This kind of information gives us a way to identify you that someone else won’t know...