Security Engineering Explained

To design, build, and deploy secure applications, you must integrate security into your application development life cycle by including specific security-related activities in your current software engineering processes. 

This whitepaper, written by five Microsoft experts and Security Innovation's CTO Jason Taylor,  describes in detail the key components of security engineering:Security Engineering Explained

  • Identifying security objectives
  • Applying security design guidelines, patterns, and principles
  • Conducting security architecture and design reviews
  • Creating threat models
  • Performing security code reviews
  • Application security testing
  • Conducting security deployment reviews