Executive Order

Engineering@Microsoft

How Microsoft empowers its developers to deliver at massive scale

The Journey to Secure the Software Supply Chain at Microsoft

May 22, 2023 May 22, 2023 05/22/23

Adrian Diglio

A secure software supply chain represents another facet of Microsoft's built-in security to enhance and maintain trust in our products. It’s a continuation of the journey we embarked upon since the launch of Security Development Lifecycle (SDL) in 2004 and represents our commitment to continually enhance Microsoft’s foundational security.

Generating Software Bills of Materials (SBOMs) with SPDX at Microsoft

October 13, 2021 Oct 13, 2021 10/13/21

Adrian Diglio

In this post, Adrian Diglio walks us through how Microsoft is planning to generate SBOMs not just to meet the U.S. Presidential Executive Order on Improving the Nation's Cybersecurity, but for all software that Microsoft produces.