Eric Marvets links to his presentation on Microsoft's Security Development Lifecycle. It's easy to be cynical about Microsoft's activities in this area (and I certainly was when they first began their Trustworthy Computing initiative) but I prefer to assume they're serious these days. The bad guys are certainly paying attention: their growth strategy is to look elsewhere for the low-hanging fruit (as Oracle are already finding to their cost).
A lot of my clients deploy onto Windows (sometimes using Oracle, for that matter) so I'm happy to see so much focus in this area.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment