Adam Shostack here. Forrester Research just released a report on threat modeling and the SDL. We’re really excited to see this report affirming a critical component of the SDL, our approach to threat modeling and supporting tools. Forrester characterizes the Threat Modeling Tool as a unique tool that allows developers to identify and mitigate security risks to make applications more secure from the onset. Their recommendation to security and application development professionals is clear: catch vulnerabilities early in the development stage by implementing Microsoft’s SDL Threat Modeling Tool. If you’re already a Forrester customer, you should go check out the report and whether you’re a current Forrester customer or not, you should download and evaluate the threat modeling tool.
Online Safety in Doha, Qatar
I recently returned from a two-day, online safety conference in Doha, Qatar. Sponsored by the … Read more »
Trustworthy Computing’s 10 Year Milestone – Reflecting on Humble Beginnings
January marks the ten year milestone of Bill Gates’ memo on Trustworthy Computing. When I … Read more »
Working with SAFECode to Help Secure the Software Supply Chain
We have a guest blogger this week: Paul Nicholas, Principal Security Strategist Manager for the … Read more »