This is a good article from a Security Engineer at Microsoft. I agree with this author that any security in an application should be the responsibility of the development team and not the security team. The security team is to *help* and *guide* network implementation, application development, and programming of operating systems. Now, if we can only get users to be aware of this.
https://msrc-blog.microsoft.com/2019/07/16/a-proactive-approach-to-more-secure-code/
No comments:
Post a Comment