Welcome to TechNet Blogs Sign in | Join | Help

Browse by Tags

All Tags » SDL   (RSS)

SDL Team Adds Test Tools to the SDL Tools Arsenel

Those of you that have been reading my blog a while know that part of my interest in security metrics is in trying to find ways to measure if Microsoft efforts to improve fundamental in security products is bearing fruit.  Central to the Microsoft Read More...
Posted Wednesday, September 16, 2009 10:26 PM by jrjones | 0 Comments

Feb09 Security Bulletin SDL Benefit Summary

Summaries from previous months: Jan09 Security Bulletin SDL Benefit Summary When I do analysis and reports on Microsoft products, I typically look for where the Security Development Lifecycle (SDL) has helped to provide improvement and provide some stats Read More...
Posted Wednesday, February 11, 2009 12:24 PM by jrjones | 2 Comments

Download: H1 2008 Desktop OS Vendor Report - Vulnerabilities and Days-of-Risk

This report looks at all of the vulnerabilities fixed by Apple, Microsoft, Red Hat and Ubuntu during the first half of 2008. At the vendor level, the report examines all vulnerabilities as well as Days of Risk (DoR) associated with those vulnerabilities. Read More...
Posted Monday, October 27, 2008 8:00 AM by jrjones | 10 Comments
Attachment(s): 1H08-desktop-vuln-report.pdf

New Security Tools for IIS and SQL

In cast you didn't see it, the Microsoft Security Response Center (MSRC) team just announced the release of three tools to help customers fend off SQL injection attacks: UrlScan 3.0 Beta ( see Wade Hilmo's blog for more ), a security tool that restricts Read More...
Posted Wednesday, June 25, 2008 10:45 PM by jrjones | 4 Comments

Visit the New SDL (Security Development Lifecycle) Web Site

I wanted to mention to folks that a new Security Development Lifecycle (SDL) web site went up earlier this month on microsoft.com. Amazingly, you can navigate to it via http://www.microsoft.com/sdl , instead of some long name you'd never remember. Of Read More...
Posted Friday, June 20, 2008 1:08 AM by jrjones | 2 Comments
 
Page view tracker