One of the results of the Trustworthy Computing initiative is that Microsoft products embrace a set of strategies called SD3+C, a term coined by the Secure Windows Initiative team. SD3+C stands for "secure by design, secure by default, secure in deployment and communications."
A product is secure by design when the overall design of a system takes security seriously. You can take several steps to accomplish this, such as security training for all personnel, adhering to design and coding guidelines, and developing regression tests for all previously fixed vulnerabilities.
A product is secure by default if it is secure enough out of the box. This goal can be achieved by taking steps such as these:
Do not install a complete ...