Standing up for cybersecurity
By forming the Cybersecurity Tech Accord, Microsoft called for measures to help protect people around the world.
Microsoft plays a pivotal role in determining a customer’s security stack. We feel a deep sense of responsibility to partner with our community to establish standards and share information that helps people and companies stay safe.
Microsoft helped establish the Cybersecurity Tech Accord, a pledge by technology companies to protect people and help defend them from malicious threats.
Fast IDentity Online Alliance (FIDO) is a nonprofit consortium of industry leaders that’s developed open standards for simpler, stronger authentication.
The Microsoft Active Protections Program (MAPP) gives security software providers early access to vulnerability information so they can provide updated protections to customers faster.
The Microsoft Virus Initiative (MVI) helps organizations that develop antimalware technology get their products working and integrated with Windows.
The Virus Information Alliance (VIA) is a public antimalware collaboration program for exchanging technical information on malicious software with Microsoft.
Coordinated Malware Eradication (CME) brings organizations together to share tools, information, and actions to drive coordinated campaigns against malware.
The Forum of Incident Responders & Security Teams (FIRST) enables incident response teams to more effectively respond to security incidents, both reactively and proactively. Microsoft is active in the Vendor, CVSS, Multi-party Vulnerability Disclosure, PSIRT Framework, Ethics, and Vulnerability Coordination SIGs.
The Industry Consortium for the Advancement of the Internet (ICASI) enables incident responders to analyze, mitigate, and resolve global security challenges with multiple stakeholders. As a founding member, Microsoft created the cross-site request forgery (CSRF) standard to help customers automate intake of security data from vendors.
The Open Source Security Foundation (OpenSSF), brings together the Linux Foundation-initiated Core Infrastructure Initiative (CII), the GitHub-initiated Open Source Security Coalition (OSSC), and other open-source security efforts to improve the security of open-source software by building a broader community, targeted initiatives, and best practices.
Microsoft is a founding member of MITRE Engenuity’s Center for Threat-Informed Defense, which builds on MITRE ATT&CK® to conduct applied research and advanced development to improve cyber defense at scale for the global community.