Are you a startup?
Get BizSpark cloud access
Get up to $3,700 of cloud benefits
Don’t have MSDN?
Here’s cloud access
At Tech-Ed EMEA 2008 we introduced new programs and tools modeled after the our internal Security Development Lifecycle (SDL) process that enables software developers to create more secure and privacy-enhanced applications.
Three elements were introduced to SDL:
SDL is a methodology for developing and programming that Microsoft created in-house and refined over the lifecycle of several major product releases and over a multi-year period. It's a series of best practices for developers and designers to evaluate and consider security issues from the moment they design a product, instead of tacking on security as an afterthought, or not doing it at all.
The result has been to make Microsoft products more secure. Although the process is not perfect given its complexity, the number of critical bugs has dropped in half for major product releases.
For more information, see Software Development Lifecycle. For more information abou tthe neew programs, see SDL Programs.
The US ISV Team introduced the concept of SDL in the Tech-Ed EMEA 2008. SDL includes 3 main elements