# Monday, 03 December 2007

To build software that meets your security objectives, you must integrate security activities into your software development lifecycle. This handbook captures and summarises the key security engineering activities that should be an integral part of your software development processes.

These security engineering activities have been developed by Microsoft patterns & practices to build on, refine and extend core lifecycle activities with a set of security-specific activities. These include identifying security objectives, applying design guidelines for security, threat modelling, security architecture and design reviews, security code reviews and security deployment reviews.

It's not a book that you would read but rather a security best practices checklist. Download the free eBook if you're interested.

Grz, Kris.

MSDN | PnP | Security
Monday, 03 December 2007 12:03:54 (GMT Standard Time, UTC+00:00)  #    Disclaimer  |  Comments [0]  | 
# Monday, 26 November 2007

Just found out about this site, http://www.pnpguidance.net/. Seemed interesting and I justed wanted to share the goods.

Grz, Kris.

Monday, 26 November 2007 09:34:07 (GMT Standard Time, UTC+00:00)  #    Disclaimer  |  Comments [0]  |