Microsoft® Security Development Lifecycle

Locations

United States Change All Microsoft Sites

Search


Microsoft Security Development Lifecycle (SDL) at 10 years
Continuing our commitment to help build safer more trusted computing experiences for everyone. See the evolution.

What is the Security Development Lifecycle ?


The Security Development Lifecycle (SDL) is a software development security assurance process consisting of security practices grouped by seven phases: training, requirements, design, implementation, verification, release, and response.

Training
Requirements
Design
Implementation
Verification
Release
Response

"Those practicing SDL specifically reported visibly better ROI results than the overall population."

Forrester Research

Why Adopt the SDL?


For Developers
Build more secure software
Better align with compliance activities

For Business Owners
Reduce total development cost
Determine security priorities

SDL Blog Posts and Tweets


Loading News....loadingPlease Wait

Share this website:

 Email this website Share this website Share this website

Featured Tools


SDL Threat Modeling Tool v3.1.8
A tool to help engineers find and address system security issues.

MiniFuzz basic file fuzzing tool
A simple fuzzer designed to ease adoption of fuzz testing.

Regular expression file fuzzing tool
A tool to test for potential denial of service vulnerabilities.

Was this information useful?
 |
yes
 |
no