Even though I needed to spend Day 2 in my hotel room finishing a deliverable I have to tell you from my experience with Day 1 (05/11/09), Microsoft has definitely put on a great conference. The talks that I’ve been to have been nothing short of top-notch and I am looking forward to heading back there for Day 3! If you’re around on Thursday, swing by and check out my session in room 409 at 2:45-4:00 pm and introduce yourself, I’d love to meet you:SIA323: The Microsoft Security Development Lifecycle (SDL) is the industry-leading software security assurance process. The Microsoft SDL became mandatory at Microsoft in 2004, and since then it has helped Microsoft make significant security and privacy improvements in flagship products such as Windows Vista and Microsoft SQL Server. Customers who have also adopted the Microsoft SDL internally within their own software development lifecycles (SDLC) have experienced similar successes. What about legacy applications? What about those applications that were not built using the guidance, tools, and best-practices from the Microsoft SDL? Or what about applications developed prior to the inception of the Microsoft SDL? What are the top effective and easily implementable things developers can do today to start protecting their customers and making their applications more resilient to malicious attack? Learn about common application vulnerabilities, how malicious users (or hackers) might exploit those vulnerabilities, and what developers can do today with the guidance, tools, and best-practices from the Microsoft SDL to better protect their applications from malicious attack.
See you there!
–Kevin
