Developer Highway Code
Download the Developer Highway Code
A new revised Developer Highway Code is now available.
.jpg "Developer Highway Code") | To build software that meets your security objectives, you must integrate security activities into your software development lifecycle. This handbook captures and summarises the key security engineering activities that should be an integral part of your software development processes.
These security engineering activities have been developed by Microsoft patterns & practices to build on, refine and extend core lifecycle activities with a set of security-specific activities. These include identifying security objectives, applying design guidelines for security, threat modelling, security architecture and design reviews, security code reviews and security deployment reviews. |
Download individual sections of the highway code:
.jpg) | Part 1 – Security Engineering
A look at the entire development process, and suggestions for ways to include security in your lifecycle. |
.jpg) | Part 2 – Checklists and Question Lists
For certain specific technologies, our lists remind you what to check, and what you need to think about, for optimal security. |
.jpg) | Part 3 – What’s New for Security in the .NET Framework v2.0
The security features in the platform were extended considerably in v2.0, so check here for a rundown of the enhancements. |
.jpg) | Part 4 – Microsoft Patterns & Practices Security Resources
Descriptions of, and links to, the Guides and Application Blocks related to security. |