• Frequently asked questions


About the Microsoft Security Development Lifecycle (SDL)


What is the Microsoft SDL?
Has the SDL improved the security of Microsoft products?
Why did Microsoft decide to make the SDL available to the public?

About the Simplified Implementation of the Microsoft SDL


Why should I use the SDL?
Can the Microsoft SDL apply to small organizations?
Which security activities should my organization preform in order to follow the Microsoft SDL process?
Are there resources available to help me deploy the Microsoft SDL at my organization?
Are there consulting services available to assist my organization in implementing the SDL?

About the Microsoft SDL Process Guidance


What is the Microsoft SDL Process Guidance?
Should I leverage the Microsoft SDL Process Guidance as resource to implement the SDL at my organization?
Why does Microsoft update the SDL Process Guidance frequently?
What are the main differences between SDL Process Guidance version 3.2 and SDL Process Guidance version 4.1?
What is the main difference between SDL Process Guidance version 4.1 and SDL Process Guidance version 4.1a?
What is the main difference between SDL Process Guidance version 4.1a and SDL Process Guidance version 5.0?
What is the main difference between SDL Process Guidance version 5.0 and SDL Process Guidance version 5.1?
What is the main difference between SDL Process Guidance version 5.1 and SDL Process Guidance version 5.2?