Microsoft to expand security lifecycle expertise
MCP Magazine | at | by Mike
Microsoft is crossing the aisles to see the security process through from start to finish -- not just internally, but for outside software developers too. The company plans to export its Security Development Lifecycle process to a greater extent by releasing tools and support to IT pros later this fall, Redmond said this week.
The software giant wants to support developers in building fortified apps, starting at the design and development phase with SDL. SDL is a "software security assurance process" that has been in place as part of Microsoft's internal architectural policy, going as far back as 2004, explained Steve Lipner, Microsoft's senior director of security engineering strategy for the Trustworthy Computing Group, in a Microsoft-published Q&A.