Skip to main content

Secure Development is Much Easier Than You Think

Eric Mittelette (Microsoft Open Tech), Steve Lipner (Microsoft Corp.)
Security
F151
Average rating: *....
(1.71, 7 ratings)

Secure software development is something absolutely critical to helping create safer more trusted computing experiences for everyone. So much so that we invest in providing free tools, resources and guidance to help assist organizations in adopting a secure development process and are actively involved in helping to evangelize these resources to the developer community. However while these resources have existed since 2008, our Trust in Computing study showed that adoption still remains low predominantly due to perceived cost, and lack of support and training.

With that in mind, we believe it’s important to help educate developers on just how easy secure development following the Security Development Lifecycle (SDL) is to implement. We recently worked with Dr Dobb’s on an article to raise awareness of several simple development and testing techniques that can help bring automation to secure development for Windows and Linux apps.

If you are building apps or are already working to roll out an SDL program, or considering doing so, we strongly encourage you to check out this Oscon session.

Eric Mittelette

Microsoft Open Tech

Developer Evangelist since the year 2000 in Microsoft France, Eric animate sessions and keynotes about Microsoft development platform since the beginning of .NET. At this time Eric integrate open source software and framework in his work, and join recently Microsoft Open Technologies, Inc as a Senior Technical Evangelist. Passionate about code algorithm since the 90’s, eric work with C, C++, C# and try to illustrate technologies breakout with simplicity and fun. His background as Agronomic researcher provide him, an different point of view and approach and a real vulgarization expertise.

Steve Lipner

Microsoft Corp.

Steve Lipner, Senior Director of Security Engineering Strategy, Microsoft’s Trustworthy Computing Group

As the senior director of security engineering strategy in Microsoft Corp.’s Trustworthy Computing Group, Steve Lipner is responsible for Microsoft’s Security Development Lifecycle team, including the development of programs that provide improved product security and privacy to Microsoft® customers. Additionally, Lipner is responsible for Microsoft’s engineering strategies related to the company’s End to End Trust initiative, aimed at extending Trustworthy Computing to the Internet.

Lipner has more than 35 years experience as a researcher, development manager and general manager in information technology security, and is named as inventor on thirteen U.S. patents in the field of computer and network security. He holds both an S.B. and S.M. degree from the Massachusetts Institute of Technology, and attended the Harvard Business School’s Program for Management Development.