14 DAY TRIAL // Microsoft is registering progress when it comes to its products influencing the development of the security ecosystem out there.
This year, the company celebrates ten years of Trustworthy Computing and eight years since the creation of its Security Development Lifecycle (SDL).
SDL, a software development security assurance process, consists of security practices that have been combined in seven different phases: training, requirements, design, implementation, verification, release, and response.
Over the years, Microsoft SDL has managed to become a Microsoft wide initiative and mandatory policy, and its role in the improvement of products and services is widely acknowledged. Microsoft SDL tools are available for download from Softpedia as well.
Moreover, the Microsoft Security Development Lifecycle has been already shared publicly, and it has been applied by both software vendors and organizations all around the world.
Today Microsoft also notes that BITS, the technology policy division of The Financial Services Roundtable, released guidelines to the financial industry, aimed at lowering risk via secure application development. The guidelines include key elements contained within Microsoft’s SDL.
At the same time, Microsoft announced the Security Development Conference 2012, a two-day event that will take place on May 15 – 16, 2012 and which will be focused on the “Evolving from Principles to Practices” theme.
Microsoft’s Corporate Vice President for Trustworthy Computing, Scott Charney will keynote on Tuesday, May 15.
Richard A. Clarke - chairman, Good Harbor Consulting, LLC and former national coordinator for security and counterterrorism, and special advisor to the president of the United States for Cyber Security, will keynote the second day.
“The inaugural Security Development Conference 2012 (SDC 2012) will bring together 250-300 professionals from a variety of industries to learn from security experts, build networks and learn about Security Development Lifecycle (SDL) practices,” Microsoft explains.
“SDC 2012 will include information for leaders in software engineering, process management and business management who are responsible for accelerating the adoption and effectiveness of SDL practices within their own organizations.”
Additional info on the conference can be found on the Security Development Conference’s website. Interested parties can also sign up there to be informed on when the registrations begin.