Dragan on Security

Microsoft called up more than 50 technical experts from the its OEM partners this week for a two-and-a-half-day refresher course in the software giant’s Security Development Lifecycle (SDL), the company’s initiative aimed at drastically reducing the number of vulnerabilities shipped in its products.

The presentations will cover threat modeling, secure coding and the hacker viewpoint, Michael Howard, security program manager for Microsoft, said on his blog.

See previous article about M. Howard’s SDL book here.

For those of you, who are interested in reading expert and scientific articles and papers from area of security and privacy, I can recommend: IEEE Security & Privacy technical magazine and IEEE Transactions on Dependable and Secure Computing scientific journal. Visit IEEE Computer Society web site here.

Also it might be interesting to read ACM Transactions on Information and System Security (TISSEC) scientific journal. Visit ACM web site here.

Also, you might find interesting to read Cipher, Electronic Newsletter of the Technical Commitee on Security & Privacy. You can find it here.