Neil MacDonaldMicrosoft recently held its 2010 MIX conference for web developers in the US. As expected, there was a significant focus on Silverlight, the Windows Phone platform and IE9. An unexpected and welcome surprise was the number of sessions designed to get developers thinking about security and privacy in their applications.
Check this out (the sessions are online and available at no cost):
Storm Clouds: What to Consider About Privacy Before Writing a Line of Code
and this one:
The HaaHa Show: Microsoft ASP.NET MVC Security with Haack and Hanselman
This is the way it should be. Sure, have a bunch of sessions on the whiz-bang latest things that developers can do, but set aside a number of sessions to remind them that security and privacy are important considerations as well.
The ultimate responsibility for writing secure applications belongs in the development organization and in the hands of individual developers, not in information security.
Category: Application Security Tags: Application Security, Microsoft, Microsoft Security
1 response so far ↓
1 Tweets that mention Microsoft’s MIX Conference: Secure Development -- Topsy.com March 26, 2010 at 5:35 pm
[...] This post was mentioned on Twitter by adam shostack, Chris Wysopal. Chris Wysopal said: RT @atdre: Microsoft’s MIX Conference: Secure Development http://bit.ly/c4toFG < security discussed at a web dev. conf. I like it. [...]