Following recent cybersecurity events, we’ve seen a significant increase in inquiries from our customers and partners about software update reliability and our release strategy. We’re providing an overview of our software release process at Bitdefender to address growing industry concerns. This process is designed to do everything we can to help minimize the risk of disruptions to your business.
Our development process prioritizes quality and reliability from the very beginning. The Software Development Lifecycle (SDLC) integrates best practices at every phase to prevent software issues from reaching the final product. Through comprehensive testing and continuous improvement, we ensure products meet the highest standards of performance and functionality. Before any update reaches your endpoints, it undergoes a series of rigorous manual and automated tests.
Secure development and rigorous testing are industry standards. At Bitdefender, we follow these practices to ensure the stability and reliability of the GravityZone Platform and all its components.
Even with the most rigorous QA procedures, unforeseen issues will happen during software updates. To minimize disruptions, we've implemented a controlled and closely monitored multi-stage release process for both our cloud console and endpoint agents.
We use our own products and services in-house to thoroughly test their functionality, identify any issues, and ensure they meet high standards before releasing them to our customers. Updates are deployed internally across our entire company, not just engineering, before reaching you. This real-world testing helps us identify any issues before wider release.
Highly sensitive updates, such as major updates of kernel drivers, undergo extended controlled rollouts (sometimes lasting months) with clear communication in the Release Notes to ensure minimal disruption.
For cloud updates, we use a gradual regional deployment process. This approach minimizes the potential impact of any unforeseen issues by strategically rolling out updates across multiple regions in phases.
We always start with a "virtual" region comprised of our employees. This controlled environment allows us to identify and resolve potential issues before they impact our customers.
The update is gradually deployed across different regions over a set timeframe. This allows us to identify and address issues that might arise without impacting all users simultaneously.
For endpoint agent updates, we use a phased rollout strategy. Here’s a breakdown of these stages:
Easily assign endpoints to Fast or Slow Ring for controlled updates.
Identifying and fixing issues early in the Super Fast Ring and Fast Ring stages has yielded a clear benefit in 2024: there haven't been any rollbacks needed for Slow Ring updates.
Bitdefender releases security content updates at least ten times daily to counter new threats. These updates go through the same stages as product updates: Super Fast, Fast, and Slow Rings. While most updates move quickly between stages (typically within two hours), more significant changes, like core detection updates, have 3x-4x longer transition times.
We closely monitor system performance metrics during the transition between update rings. Automated systems track failure rates and other key indicators. If anomalies are detected, the update process is immediately paused, allowing our teams to investigate the issue before resuming (or rolling back) deployment.
We've explained how Bitdefender carefully rolls out updates in stages to keep operations running smoothly for everyone - but keeping systems safe is a team effort. Here are some of the best practices to avoid unnecessary disruptions:
tags
Martin is technical solutions director at Bitdefender. He is a passionate blogger and speaker, focusing on enterprise IT for over two decades. He loves travel, lived in Europe, Middle East and now residing in Florida.
View all postsDon’t miss out on exclusive content and exciting announcements!