eWeek Security Watch Editor Ryan Naraine recently spoke with Jonathan Ness, the lead software security engineer on the SWI Defense team, about how software vulnerabilities are rated and the ups and downs of working with third-party researchers.

Microsoft’s Secure Windows Initiative unit has emerged from the shadows, promising a new level of transparency, as well as details of software vulnerabilities and security bulletins.

SWI, tasked with maintaining and managing all aspects of Microsoft’s mandatory SDL (Security Development Lifecycle), has launched a new blog that provides customers with technical details on security vulnerabilities, mitigations and workarounds.

Full Article

Microsoft, SEI, Secure Windows Initiative, Security, Vulnerability