Aimed at providing up to date guidance and best practices, the updates are focus on its security tooling guidance, compiler and cryptographic recommendations, as well as its SDL Developer Starter Kit, according to a company blog post.
“Detailed Cryptographic Recommendations taken from Microsoft internal standards are now available for the first time – providing valuable guidance for developers looking to build cryptography into applications and services in line with Microsoft’s own practices,” wrote Andrew Marshall, principal security program manager for security engineering.
Additional changes to the SDL website can be expected “over the next few months.”