Yes, at MIX10 you’ll learn about developing applications and games for the next generation of Windows Phone. Yes, we’ll have Phone sessions, and we can’t say more…yet. Stay tuned and check back often or join the MIX mailing list.
http://live.visitmix.com/
Gedurende de dag zal ik foto’s posten op mijn skydrive. Deze is te vinden op : http://cid-9a6b06cb3b074239.skydrive.live.com/browse.aspx/LEAP%20DAY%201 en morgen in de folder DAY 2, enz …
Op dit moment is Tim O’Brien aan het presenteren over Platform Strategie. Later vandaag za ik de video posten op YouTubbies.
Tot later :-)
http://leaphaip.msnlevents.net/content/info.asp?infoid=13&CcpSubsiteID=142
Via blogposts zal ik Foto’s en Video’s posten … Natuurlijk zijn live updates ook te volgen op www.twitter.com/ruudj
Het programma zier er als volgt uit :
Tot later !
De site www.devdays.nl is net live gegaan en meteen met nieuws. Anders Hejlsberg doet de keynote !! Registreer je nu voor de early-bird korting.
Anders Hejlsberg is a Technical Fellow in the Developer Division. He is an influential creator of development tools and programming languages. He is the chief designer of the C# programming language and a key participant in the development of the Microsoft .NET framework. Since its initial release in 2000, the C# programming language has been widely adopted and is now standardized by ECMA and ISO. Before his work on C# and the .NET framework, Hejlsberg was an architect for Visual J++ development and the Windows Foundation classes.
Before joining Microsoft in 1996, Hejlsberg was one of the first employees of Borland International Inc. As principal engineer, he was the original author of Turbo Pascal, a revolutionary integrated development environment, and chief architect of its successor, Delphi.
Hejlsberg co-authored "The C# Programming Language", published by Addison Wesley, and has received numerous software patents. In 2001, he was the recipient of the prestigious Dr. Dobbs Excellence in Programming Award.
He studied engineering at the Technical University of Denmark
Op #PDC09 staat een heuse container met zoemend blik. Voor diegenen die altijd al eens een zee-container met servers van dichtbij heeft willen bekijken, hierbij een korte video…
Mega hoeveelheid content (eigenlijk te veel nieuws voor 1 dag :-)). O.a. : Azure data center in NL, Azure in production, mix en match cloud, hosted VM’s, Sinofsky morgen op het podium, Pinpoint, Dallas, App dinges en nog veel meer …
Ik zit nu in een breakout van Russevinoch over Win 7 en Server 2008 R2 kernel changes (geek food).
En ja, de jetlag slaat toe. Het wordt nog een lange dag.
En stiekem al bij de eerste interne MS sessie binnen gelopen :-). Morgen “echte” content !
En jawel, ik zal hier dagelijks mijn (video) impressie posten (waarschijnlijk op Youtube want het is altijd leuk als een concurrent bijdraagt aan de verwezelijking van onze cloud visie)
Tot later !!
Ruud
With more and more business customers deciding between client, cloud, or both for their computing environments, security guidance must be dynamic and evolve along with the community. Because security and privacy are key concerns affecting adoption of cloud computing, the industry has an opportunity to assure customers that web applications running on cloud platforms can operate in a safe and trusted environment.
Microsoft has made a series of moves to take its secure development best practices beyond its borders to the broader developer community. This has included a body of guidance, an SDL Optimization Model, the creation of a network of certified service providers through the SDL Pro Network and a no-cost SDL Threat Modeling tool. All of these, plus subsequent releases of SDL programs, tools, guidance and technologies have better enabled software developers and industry partners to build security and privacy directly into software applications and provide their users with a more trusted computing experience.
Yesterday at the Tech·Ed Conference in Berlin, Germany, Microsoft announced two new SDL offerings
Security Considerations for Client and Cloud. Download a whitepaper from the SDL team that discusses security issues associated with “client and cloud” applications, and the steps Microsoft has taken to evolve SDL to address those security issues in Microsoft services.
SDL 4.1a, expanded to include Agile Development processes. Download the latest SDL process guidance that includes SDL for Agile Development, a streamlined approach that melds Agile methods and security. Comprehensive yet flexible, the SDL for Agile guidance includes all SDL requirements, but provides guidance on how to apply them even for very short release cycles.
Let me briefly expand on each of these.
Security Considerations for Client and Cloud
As the computing industry considers Cloud Computing, customer are concerned with how data will be protected. In a September 2009 online survey of IT Pros, about 51% cited security and data privacy concerns as the biggest impediment to adopting cloud services.
In Security Considerations for Client and Cloud, Microsoft takes a look at security from the point of view of development organizations that may be considering hosting their application with a 3rd-party infrastructure (ie. “cloud”) provider.
If you are to host your well-coded application on a 3rd-party infrastructure, at a high level, you should be asking questions (of potential cloud providers) concerning two general areas of security:
- Operational Security and Compliance. If you have regulations governing your industry (e.g. healthcare), what does the provider do to make sure you are in compliance? What have they done to demonstrate their operational security?
- Security Features and Service Level. Additionally, different providers may offer different cloud security features (e.g. supporting certain types of authentication) and different security service levels in their SLA. Ask for details to ensure that you know exactly what they will provide you (from a security perspective) as your partner in delivering services to your customers.
Of course, fundamentally, application software, whether traditional or for the cloud, still needs a structured security development process such as SDL. So, make sure you are using a structured security development process like SDL for your application.
What? You say you have a 2 week release process and use an Agile development process? No problem, read on…
SDL for Agile Development
If you are using an Agile development process, you are not alone. Agile development methods are being adopted more and more frequently in enterprises around the world. According to an independent report by Forrester, 85 percent of technology industry professionals have either just adopted, are midway through the process, or have a mature implementation of Agile development methods.
Note: if you are not familiar with Agile development and would like to know more, you may want to read a bit more on http://www.agilemanifesto.org. Wikipedia defines it as:
Agile software development refers to a group of software development methodologies based on iterative development, where requirements and solutions evolve through collaboration between self-organizing cross-functional teams. The term was coined in the year 2001 when the Agile Manifesto was formulated.
(also)
Notable early Agile methods include Scrum (1995), Crystal Clear, Extreme Programming (1996), Adaptive Software Development, Feature Driven Development, and Dynamic Systems Development Method (DSDM) (1995). These are now typically referred to as Agile Methodologies, after the Agile Manifesto published in 2001.
If you take a look at Bryan Sullivan’s SDL Blog post concerning SDL for Agile, he gives a great description of how the team approached the task of taking the comprehensive SDL requirements and processes and organizing the guidance into an Agile-friendly structure that can be flexibly applied to long or short agile development projects. I’ll give a quick summary of his post.
If you look at the Security Development Lifecycle and how it is described by phases, you can see that it was originally developed to integrate with the spiral-based product development process used by Microsoft to develop Windows and other business products. Though there are many differences between spiral and Agile methodologies, two key differences stand out to me:
- Agile development methodologies don’t have defined phases, and
- Agile releases tend to be much shorter, in some cases only a week or two
To address these differences, SDL for Agile breaks the SDL into three categories of requirements: every-sprint requirements, the requirements so important that they must be completed every iteration; one-time requirements, the requirements that only have to be completed once per project no matter how long it runs; and bucket requirements, the requirements that still need to be completed regularly but are not so important that they need to be completed every sprint.
SDL for Agile also provides guidance for adapting many of the core SDL activities to Agile. Threat modeling is a perfect example: a team could easily spend an entire week-long sprint performing threat modeling, but this may not be the best use of their time. SDL-Agile describes how a team can spend an appropriate amount of time modeling new features as well as how to build up a baseline of threat models for existing functionality.
To get the full SDL for Agile guidance, download SDL 4.1a, expanded to include Agile Development processes, and read through the new sections on Agile.
Final Thoughts
As the computing industry evolves, Microsoft continues to invest in security and privacy fundamentals and ensures its software development processes, best practices and technologies extend from Client to Cloud environments. The release of SDL for Agile and the cloud security white paper highlights Microsoft’s continued efforts to meet the changing needs of the development community and ultimately will help create a more trusted online computing experience.
Best regards, Jeff Jones
IDC Report October 2009, Sponsored by Microsoft
KEY FINDINGS
Economists have long recognized the important role information technology (IT) can play in a country's development. As the IT sector helps lead us out of the worst global recession in more than 50 years, that role will be even more important.
To quantify the direct benefits of IT on local economies as we head toward recovery, IDC has studied the relationship between IT, software, the Microsoft ecosystem and the economies of 52 countries, including Netherlands.
Key findings for Netherlands:
- IT spending in 2009 will be 19 billion EUR ($28.2 billion). From the end of 2008 to the end of 2013, IT spending will grow 1.6% a year, compared to GDP growth of -0.3% a year.
- IT-related activities will generate 19 billion EUR ($27.2 billion) in taxes in 2009. Over the next four years that means more than 4 billion EUR ($5.8 billion) in aggregate net new taxes. That spending growth means that employment in the IT industry and of IT professionals in IT-using organizations will rise by 27,000 jobs in the four years from the end of 2009 to the end of 2013, up from a 2009 base of 432,000.
- That represents growth of 0.8% a year from now through 2013, while overall employment is expected to shrink.
- Software drives activity in the services and distribution sectors, as well as in IT-using organizations, which means that while spending on packaged software will be only 20% of total IT spending in 2009, 64% of IT employment will be software-related.
- The IT market will drive the creation of more than 800 new businesses between now and the end of 2013. Most of these companies will be small and locally owned organizations.
THE MICROSOFT ECOSYSTEM
The Microsoft ecosystem in Netherlands includes those companies that sell PCs, servers, storage, and smart handheld devices running Microsoft software; software vendors that write applications that run on Microsoft platforms; resellers that sell and distribute these products; and service firms that install and manage Microsoft-based solutions, train consumers and businesses on Microsoft products, and service customers for their own applications. It also includes companies that do combinations of these functions.
Note these additional findings:
- As a group, companies in the Microsoft ecosystem in Netherlands will generate more than 6.7 billion EUR ($9.8 billion) in revenues for themselves in 2009. For every EUR Microsoft will make in Netherlands in 2009, companies in the local ecosystem will make 9.49 EUR.
- To generate those revenues, companies in the local ecosystem will drive nearly 2.2 billion EUR ($3.3 billion) of investment, most of it in the country.
- Companies in the Microsoft ecosystem employ 56,000 people; IT-using organizations employ another 103,000 IT professionals who work with Microsoft software or the products and services based on it.
- Together, these employees will account for 37% of IT-related employment in 2009 and 40% of IT-related taxes in the country.
GROWTH THROUGH INNOVATION
Seven years after the third major high tech crash in the last 50 years, the industry is flush with new technology, from new servers and client devices and new storage and networking technologies, to new software architectures and delivery models.
Together, these new technologies are ushering in what may be a new paradigm of computing, known variously as cloud computing, cloud services, or dynamic IT. Microsoft calls it Software plus Services.
The promise of this new way of computing, which involves the use of Internet-based services and intelligent clients and devices, is that businesses, governments, and educational institutions will be able to lower the capital costs of IT and increase the amount of their IT budgets that can be devoted to innovation, rather than to the maintenance of legacy applications and infrastructure.
This new type of computing is in its infancy – while IDC estimates that this year it will account for about 1% of IT spending in the Netherlands, that percentage may triple over the next four years. Despite that small footprint, the economic benefits can be significant. If that amount of IT spending is applied to innovation more effectively than it is today, IDC estimates that cloud services could add almost 4 billion EUR ($5.8 billion) in net new business revenues to the Netherlands economy between the end of 2009 and the end of 2013.
SUMMARY AND OUTLOOK
The IDC research reinforces the conclusions drawn in academic research – namely, that IT is good for local economies. The economic benefits quantified in this study will help Netherlands grow, create new jobs, improve the efficiency of its labor force, and support the formation of new companies. The economic benefits not quantified in this study but referenced in the academic research help drive productivity improvements throughout a country, increase competitiveness, and foster local innovation.
The table below summarizes some of the key IT industry metrics covered in the study.
Copyright 2009 IDC.
LOL !!!!
Binnenkort in Elsevier:
Games ontwikkelen, meedoen aan de DevDays, brainstormen tijdens de TechNights, werken op een Microsoft-platform dat in de markt nog niet beschikbaar is. En gewoon contact kunnen opnemen met Redmond om te zeggen hoe je het wilt hebben. Dagelijkse kost voor de ontwikkelaars die bij Achmea Information Technology (IT) werken. Dankzij een strategische samenwerking met Microsoft is niets meer te gek. De ontwikkelaars van Achmea IT likken hun vingers erbij af. En het mooiste is: ze zijn op zoek naar collega’s.
Het afgelopen jaar is de belofte van de samenwerking uitgekomen: ondernemen met Microsoft is inleven, vernieuwen en waarmaken. Daarom verlengde Achmea IT recent de samenwerking met Microsoft in een strategische alliantie. Microsoft levert de technologie die Achmea IT vervolgens op innovatieve wijze toepast, een unieke win-win-situatie als filosofie achter deze strategische samenwerking.
Verrassend
‘Achmea IT verrast ons regelmatig,’ vertelt Ruud de Jonge, Director Developer & Partner Experience (DPE) en lid van het managementteam van Microsoft Nederland. ‘Afgelopen voorjaar stond Achmea IT op de DevDays met een Surface (zie: www.microsoft.com/surface/)
waarop ze een spel ontwikkeld hadden waar je met opblaashamers een mol op z’n kop moest slaan. Binnen tien seconden had iedereen lol. Een daverend succes waarmee Achmea IT liet zien dat technologie leuk is. Die toepassing hadden we zelf nooit kunnen bedenken.’
‘Dit ‘mep-je-fit’-spel kan jonge kinderen helpen zich bewust te worden van hun voedingspatroon,’ legt Maarten van Duuren uit. Hij is directeur Information Technology bij Achmea. ‘We konden dit alleen maar bedenken omdat Microsoft en Achmea IT bij elkaar in de keuken konden kijken. Daardoor zijn we de eerste op de markt met deze toepassing.’
Innovatiekracht
Achmea beschikt als grootste verzekeraar van Nederland over een serieuze IT-afdeling die succesvol is in het ondersteunen van de polis- en claimadministratie. Een van de onderdelen van Achmea IT is het Microsoft Ontwikkelcentrum waar veel aandacht uitgaat naar vernieuwing.
Door creatief om te gaan met technologie loopt Achmea IT voor de troepen uit. Niet alleen in de markt door direct producten te kunnen implementeren die samen met Microsoft ontwikkeld zijn. Ook werken de ontwikkelaars van Achmea IT met het nieuwste van het nieuwste. De ontwikkelaars staat de volledige Microsoft suite tot hun beschikking. Dankzij de strategische samenwerking met Microsoft werken ze vooraan in de technologiecyclus.
‘Neem Rosario, de codenaam voor het nieuwste Microsoft ontwikkelplatform dat nog niet op de markt is, Visual Studio Team System 2010,’ roept Maarten van Duuren enthousiast. ‘Onze ontwikkelaars zijn betrokken bij het ontwikkeltraject van deze software en hebben daartoe rechtstreeks contact met de ontwikkelaars in Redmond. Zo worden ze uitgenodigd om daar te vertellen hoe ze het willen hebben. Voor deze toegang en daarmee feedback komen maar een paar bedrijven in de hele wereld in aanmerking, en Achmea IT is er daar één van. Dat is voor onze ontwikkelaars helemaal geweldig.’
Thought Leadership
Achmea IT is niet alleen boeiend als innovatief servicebedrijf met ongekende IT-mogelijkheden. Ook als werkgever doet Achmea IT bepaald niet onder. Hulpmiddelen als SharePoint Server ondersteunen het flexibele gebruik van werkplekken. Het Nieuwe Werken van Microsoft sluit goed aan op de filosofie van Achmea. Verder biedt Achmea IT prachtige ontwikkeltrajecten, zoals het samen met Microsoft ontwikkelde Excellence Programma. Binnen dit programma worden leiders op het gebied van ondernemerschap en visie ondersteund in hun verdere ontwikkeling om daarmee Achmea IT nog meer dynamiek te geven dan het al heeft.
Een ander aantrekkelijk aspect van Achmea IT als werkgever vormen de Achmea IT TechNights. Tijdens deze pizza-avonden - het zijn er zes per jaar en ze zitten altijd bomvol - brainstormen medewerkers op vrijwillige basis met de Microsoft community over producten die Achmea IT in de samenleving kan neerzetten. Kortom, een snoepwinkel voor iedereen met een passie voor toegepaste IT.
Kijk voor meer informatie op: www.achmea.nl.
Uit Security.nl :
Het gerenommeerde Duitse testorgaan AV-test.org heeft Microsoft's Security Essentials op de pijnbank gelegd en zowel de zwakke als sterke punten van de gratis virusscanner blootgelegd. De test werd uitgevoerd met de versie die gisteren van Microsoft's website te downloaden was. Het eerste onderdeel betrof 3732 malware exemplaren van de WildList, die Security Essentials allemaal wist te detecteren. Voor de tweede ronde kreeg de scanner een cocktail van ruim 545.000 virussen, wormen, backdoors, bots en Trojaanse paarden te verwerken. Security Essentials wist er 536.535 te vinden, wat neerkomt op een detectiescore van 98,44%. "Wat een erg goede score is", zegt Andreas Marx van AV-Test. De adware en spyware test verliep met een score 90,95% iets minder goed, maar nog steeds acceptabel. Van de 14.222 exemplaren miste Security Essentials er 1287.
Een perfecte score werd ook bij de false positive test gehaald. Bij het scannen van 600.000 schone bestanden sloeg de scanner geen één keer vals alarm. "Aangezien de meeste bestanden van Microsoft afkomstig zijn, zou een andere uitslag een grote verrassing zijn", gaat Marx verder.
Achilleshiel
Dat het hier om een "basis" virusscanner gaat wordt duidelijk tijdens de dynamische malware detectie test. De virusscanner moest hierbij malware detecteren die nog niet door signatures, heuristieke detectie en 'in de cloud' features gevonden wordt. "We troffen geen effectieve dynamische detectie features aan." Geen van de exemplaren werd dan ook aan de hand van hun verdacht gedrag gevonden. "Andere virusscanner bevatten ook geen dynamische detectie, die in de meeste gevallen alleen in de Internet Security Suites editie van de producten aanwezig is."
Het verwijderen van malware doet Security Essentials naar behoren, waarbij het alle actieve onderdelen verwijdert. In veel gevallen liet het echter sporen van de infectie achter. Het ging dan om inactieve uitvoerbare bestanden, registerwaarden, een uitgeschakelde Windows firewall en aanpassingen in het Hosts-bestand.
Rootkits
Waar de scanner wel schittert is bij de detectie en verwijdering van actieve rootkits, wat volgens Marx erg indrukwekkend was. Alle 25 rootkits werden succesvol gevonden en verwijderd. Wat betreft scansnelheid is dit behoorlijk. "De scanner is niet de snelste, maar ook niet de langzaamste." Later zal Marx een uitgebreidere test publiceren.
Meer posts
Volgende pagina »