Secure coding lessons from Microsoft
Last week we had some tech journalists visit Redmond to discuss security products and, in my case, security engineering. One of the attendees, Mari-Len De Guzman, wrote a really balanced, non-alarmist analysis of the talk.
It's a good read (IMHO!)