Microsoft No Longer a ‘Laughingstock’ of Security?

Toreo asesino writes “In a Q&A with Scott Charney, the vice president of Trustworthy Computing at Microsoft, Charney suggests that security in Microsoft products has moved on from being the ‘laughing stock’ of the IT industry to something more respectable. He largely attributes this to the new Security Development Lifecycle implemented in development practices nearly six years ago. ‘The challenge is really quite often in dealing with unrealistic expectations. We still have vulnerabilities in our code, and we’ll never reduce them to zero. So sometimes we will have a vulnerability and people say to me, “So the [Security Development Lifecycle (SDL)] is a failure right?” No it isn’t. It was our aspirational goal that the SDL will get rid of every bug.’”

Read more of this story at Slashdot.

Original post by Toreo asesino (posted by Zonk)

This entry was posted on Friday, September 21st, 2007 at 7:51 am and is filed under Tech News 09/2007. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.