Microsoft released its first ever Security Development Lifecycle (SDL) Progress Report today, outlining nine years of progress developing, improving and adopting the SDL process.
The document also shows how a two-pronged approach, combining technology (i.e. defense-in-depth features, tools, etc.) and processes, can enhance the benefits of secure development. Finally, the new report shows where security mitigations built into Windows operating systems have gained the most traction among industry application developers.
More information and a download of the report are available here.
Related Column: Lessons from the Trenches on Implementing a Secure Development Lifecycle
Related Column: Implementing a Secure Development Lifecycle: The Importance of Executive Support