Chapter 10. Windows Azure Security
"The mantra of any good security engineer is: "Security is a not a product, but a process." It's more than designing strong cryptography into a system; it's designing the entire system such that all security measures, including cryptography, work together."
—Bruce Schneier, Security Guru and Chief Security Technology Officer of BT
This chapter focuses on Microsoft Security Development Lifecycle (SDL), with respect to cloud computing in general and with special attention to Windows Azure. The SDL is a process that can be (or should be) part of your software development process. It creates awareness on the topic security throughout the whole project, from requirements up to release. Microsoft created process guidance on the SDL, released whitepapers, and created tooling, so that you can quickly adopt this process into your own development process. This chapter contains:
Core concepts of SDL
Security roles involved in projects
Activities to be performed in the...
