May 2009 - Posts
Hello all - Dave here... Wanted to drop a quick note to talk about the SDL 4.1 process guidance that we released on May 19th... While most of the attention and chatter from the development community has been focused on the announcement of the SDL Process
Read More...
Hello all - Dave here... We have been pleased thus far with the reaction from the developer community to our release of the SDL Template for Visual Studio Team System . However, some folks in the developer community have inquired about applying the template
Read More...
When I joined the SDL team last fall, the SDL Pro Network had launched as a one-year pilot program . Upon returning from maternity leave, I took over management of the SDL Pro Network. I have been working on formalizing the program in order to bring it
Read More...
Technorati Tags: SDL , SDL Process Template , Tools Hi everyone! Jeremy Dallman here. I would like to announce a new and easier way to integrate the SDL into your development lifecycle. In the year since we released the Microsoft SDL Process Guidance
Read More...
Over the last few years I have written a number of articles, papers and books describing some of the dangers of using various buffer-manipulating C runtime functions. Well-known examples of bad function calls include strcpy(), strcat(), strncpy(), strncat(),
Read More...
Hi, Bryan here. Regular readers of this blog know that Iām more likely to write technical posts about new defense tactics than I am to pontificate on the state of the security industry. However, while I was at the RSA Conference last month, I overheard
Read More...
Steve Lipner here, Steve Bellovin, one of the pioneers of Internet security wrote a blog post about security, open source, and secure development process. It's worth reading if you're an open source fan, or if you're not. My one quibble is that Steve
Read More...
