Archive for the TWC Category

10 years of building trust

Posted in Cyber Security, Security, Security Development Lifecycle, TWC on 12 Jan 2012 by Stuart Aston


When I joined Microsoft  the world was a different place, we were not always connected and always on, and computer threats were a curiosity for the majority.  That started to evolve rapidly and  10 years ago today Bill Gates published his memo on Trustworthy Computing; he laid out the  change of direction we would take as a company placing security and trustworthiness  as integral component of the way in which we build software and delivers services to our customers. 

Over that 10 years we have changed and have evolved, SDL is not only an integral component of developing software inside Microsoft, but many  partners and developers around the world. We have made significant contributions to improve Security but also in Privacy, Reliability and Business Practices.  Newer software continues to be safer software as we have shown in our Security Intelligence Reports as a result of our efforts in SDL.  Microsoft Security Essentials is freely available to those who desire to use it to protect their computers.

In the last 10 years we have learnt a lot and built a trust with many of our customers, and trust is one of the greatest assets that a company can have. But to maintain that trust, Trustworthiness must continue to evolve and grow to deal with the changing environment, as people place a greater reliance on computing and it becomes entwined with every aspect of our daily lives, we must continue to advance trust in technology.

TWC NextBut, this is not something that anyone technology or individual or  company can accomplish alone; we will continue to work with government and industry partners, on combating cyber criminals through the work of the Digital Crimes Unit a their work on botnet takedowns and PhotoDNA, but, it is only achievable by working with partners and working together to make the internet a safer place.

How can you celebrate it ?  I think that we can best celebrate an event by embracing it:

-Moving to x64 based architectures as part of a defence in depth strategy

-Moving to the most recent version of software that you can and keeping it patched and up to date

-Employing SDL in your development practices, or looking for behaviours like SDL in software you procure for your business

-Educate your users and developers about best practice for them, and acceptable risk for you

-Educate your family on how to be safe online.        

Trustworthy computing is more important today than it was 10 years ago, and we remain committed to delivering it, with our partners.

%d bloggers like this: