December, 2008

  • The Security Development Lifecycle

    MS08-078 and the SDL

    • 9 Comments
    Hi, Michael here. Every bug is an opportunity to learn, and the security update that fixed the data binding bug that affected Internet Explorer users is no exception. The Common Vulnerabilities and Exposures (CVE) entry for this bug is CVE-2008...
  • The Security Development Lifecycle

    Announcing CAT.NET CTP and AntiXSS v3 beta

    • 6 Comments
    Hi, Todd Kutzke here… I’m the Sr. Director of Microsoft’s Information Security team whose mission is to enable secure and reliable business for Microsoft and its customers. Our team resides inside of Microsoft IT (MSIT) and is focused on managing information...
  • The Security Development Lifecycle

    SDL videos

    • 1 Comments
    Adam Shostack here. While at Tech Ed Developer in Barcelona, Michael Howard and I did three video segments. The first is on the announcements that we made and Dave Ladd blogged about . The second is a 25 minute detailed walkthrough of the new SDL Threat...
  • The Security Development Lifecycle

    BlueHat SDL Sessions Wrap-up

    • 1 Comments
    Hi everyone, Bryan here. The debut BlueHat SDL Sessions are over, and they were a resounding success: 96% of attendees completing evaluation surveys reported that they will be able to apply knowledge that they learned in the SDL sessions to make their...
Page 1 of 1 (4 items)