By David Ladd, Principal Security Program Manager, Security Engineering and Community (SEC)

Hi there – Dave Ladd from the Microsoft SDL Team here...

Earlier this morning I attended a panel session at RSA entitled “Software Assurance: Driving Global Security and Integrity”, with Microsoft’s Steve Lipner participating as a panelist. During the question-and-answer portion, a number of folks asked about secure software development practices – with questions running the gamut from general to very specific.

Given that context, I’d like to announce the availability of the Microsoft Security Development Lifecycle (SDL), version 3.2 on MSDN. For those unfamiliar with the SDL, it is the process that our product teams use to ensure security and privacy during the development process. You can read more about it on the SDL Blog.

David Ladd, Principal Security Program Manager, Security Engineering and Community (SEC)