Baking Security In: A Comic Strip View of SDL
So how do you take your average developer who scoffs at security from 
the careless and brash aka Kevin, to the poster child for good development practices aka Kevlarr. Well, the Microsoft SDL team has the answer for you. The team recently started publishing a series of web comics detailing the travails of the dev team at Contoso who are under attack from the League of Malware. Along the way they battle with foes such as Spam Bot and Social Engineer while getting help from Vigil and Nforcer. Strip 11 of this interesting attempt to socialize security is below:
Socializing security is essential for organizations to drive culture change from one based on FUD to one based on an understanding of security needs. People are the most complex part of the security puzzle. Most people take the easy way out and will avoid the things they fear or don’t understand. Every CIO should ask the what his/her organizations plans around socializing security are. So what are they?
- Akshay
If you like this post, 
Subscribe in a reader
March 3, 2009 at 4:21 pm
[...] So how do you take your average developer who scoffs at security from the careless and brash aka Kevin, to the poster child for good development practices aka Kevlarr. Well, the Microsoft SDL team has the answer for you. Read more… [...]
March 4, 2009 at 6:10 am
wow great comic too bad its way too small for anyone to actually read.
March 23, 2009 at 9:35 pm
Its interesting to see how large corporations try to break down tough messages like security into small bite size pieces.
April 24, 2009 at 8:17 am
Checkout all the strips here.
http://www.microsoft.com/security/bakingsecurityin/strips.htm