Adam Shostack here. Forrester Research just released a report on threat modeling and the SDL. We’re really excited to see this report affirming a critical component of the SDL, our approach to threat modeling and supporting tools. Forrester characterizes the Threat Modeling Tool as a unique tool that allows developers to identify and mitigate security risks to make applications more secure from the onset. Their recommendation to security and application development professionals is clear: catch vulnerabilities early in the development stage by implementing Microsoft’s SDL Threat Modeling Tool. If you’re already a Forrester customer, you should go check out the report and whether you’re a current Forrester customer or not, you should download and evaluate the threat modeling tool.
Cloud Computing: Turning Big Data into Business Insight
Today there is an unprecedented amount of information, often referred to as Big Data, being … Read more »
Attack Surface Analyzer 1.0 Released
Last year we released a beta version of our free Attack Surface Analyzer tool. The … Read more »
SDL Sessions at BlueHat
Last January, I wrote a post on this blog bemoaning the difficulty of making security … Read more »