We’ve talked before on this blog about SAFECode – an organization of IT vendors who have come together to share and document best practices in software security.
SAFECode has published a number of papers on best practices in software and supply chain security – most recently an update to “Fundamental Practices for Secure Software Development” released earlier this year. The SAFECode web site is a great resource for vendor-independent guidance on software security.
Today, SAFECode announced that Siemens has become the eighth SAFECode member joining Adobe, EMC, Juniper, Microsoft, Nokia, SAP, and Symantec. Siemens, headquartered in Berlin and Munich Germany, is a supplier of products for use in industry, healthcare, energy and infrastructure. Software security is an important matter for Siemens, and they will bring SAFECode great expertise in control systems often used in critical infrastructure.
As the Microsoft representative to the SAFECode board and the board’s chair, I’m delighted to welcome Siemens to SAFECode. I’m looking forward to SAFECode releasing new products that take advantage of the expertise Siemens brings.