Brad Smith, Microsoft president, pointed to significant technological developments across the industry as the reason for the move, including AI and the ever-growing capabilities of ransomware criminals and nation-state cyber operations.
The SFI is propped up by three key pillars. The long and short of it is that Microsoft is pushing the big AI button a few more times, more deeply embedding the tech throughout its security operations and products. An update of its software engineering practices is also on the horizon which again hinges on AI.
The AI train doesn't stop there, either. The company said its software engineering practices are going to be overhauled, again citing the evolving threat landscape instead of the widely bemoaned issues in the company's code.via X."Look forward to seeing material progress on this effort. It's imperative that tech manufacturers take ownership for the security outcomes of their customers.
The final pillar of SFI isn't really to do with any actions Microsoft might take internally, at least in any material sense. Referred to as the"stronger application of international norms," Smith essentially said the company will encourage better security practices across industry. Speaking to Forbes, CrowdStrike's CSO Shawn Henry made the point that Microsoft's products are everywhere, from market-leading multinationals to governments of world powers.