Security

Meet the team that's building security into .NET. This is a video that every developer should watch. In the last third of the video the team gives demos of how to build secure apps.

Roger Grimes is a security expert and author (he wrote a free ebook: Keeping Your Business Safe From Attack: Passwords and Permissions and more than 100 magazine articles on security). Anyway, he was visiting Microsoft's campus and sat down with IIS evangelist Brent Hill to talk about IIS 7…

Kim Cameron has caused quite a stir with his Identity Blog. He came out with a whitepaper called "the Laws of Identity" which has caused quite a bit of conversation.So, we went over and talked about, what else, identity online. It's important for developers (and companies) to think…

Andy Gordon and Karthik Bhargavan (researchers from Microsoft's research center in Cambridge, England) take us out to see "Lake Bill" back on Microsoft's main campus in Redmond where we avoid the geese and talk about their Web Services Security research and get a tour of their…

Who are the people on the front lines when a security problem gets disclosed? The Security Response Center. Here you get to meet those folks. By the way, what's the proper way to let the world know about a security problem you've found? Send an email to secure@microsoft.com. This team will…

Gabriel Torok is CEO of Preemptive Solutions. They sell the Dotfuscator, which lets developers protect their programs against reverse engineering while making them smaller and more efficient. Here Mike Hall interviews Gabriel about how Dotfuscator works.

Phishing attacks are becoming more frequent. What's a phish attack? When a criminal makes an email that looks like it came from a company like eBay. Tricks the user into entering passwords or credit card numbers. Here's some things to do to protect yourself.

Developers are being asked to create more secure code. The next version of Visual C++, code-named Whidbey, will introduce several new security-protection capabilities. Here Scott Currie, Scott Currie, program manager of Visual C++ discusses the new security-focused  changes.

Stephen Toulouse works in the security response center at Microsoft. This is the group that goes to work when a new vulnerability or attack is discovered around the world. During a crisis they'll work around the clock to help customers.

Microsoft's Security Response Center gets a lot of email sent to its secure@microsoft.com alias. Stephen kept talking about "responsible disclosure" with us so we wanted to find out just what he meant by that.