I’ve been a firm believer of integrating as much security tooling as possible into the development process so developers can get on with developing code and designing solutions rather than having to constantly think about dotting the security “i”s and crossing the security “t”s.

The less security “friction” the better, because the more you can automate the more progress you can make.

Jeremy Dallman has just announced that we have released the Microsoft SDL Process Template for Visual Studio Team System, and yes, it’s free.

I think this is a huge step forward because now software development teams outside of Microsoft can more easily track their adherence to the SDL.

Technorati Tags: ,