- 12 myths about how the Internet works
- Smartphone smackdown: Storm vs. iPhone
- IETF: Should we ignore the Kaminsky bug?
- Top 10 wicked cool algorithms
- How to recession-proof yourself
Microsoft plans to give security vendors a head start in what has become a monthly race against the hackers.
Starting in October, the company will provide security vendors with early access to technical details of its monthly security patches before the software updates are actually released. This will give the companies that write attack-blocking code a bit of a cushion as they write and test their security software.
Microsoft calls this initiative the Microsoft Active Protections Program (MAPP) and says that participating companies must sell commercial Windows security products and have a large customer base -- and no, sellers of attack-based penetration testing tools are not invited.
Early participants include IBM, Juniper Networks, and 3Com's Tipping Point division, but other companies are expected to sign up.
In the past few years the tools used by cyber criminals have advanced to the point where hackers can analyze the latest Microsoft patches and then turn out exploit code within a matter of hours, so Microsoft's plan to give the security industry an early look at technical information on the bugs could be a real help, said David Endler, senior director of security research for TippingPoint.
Even if TippingPoint gets the information just a day before the patches are released, it will be able to use the extra time to write and then test its filtering software, Endler said. "24 hours is a huge help."
Microsoft also plans to give regular users a little more help too, by beefing up its public security bulletins with information on whether or not hackers are likely to actually write malicious software that exploits the flaws that Microsoft patches each month.
The company already measures the severity of its security bugs, rating them "critical," "important," "moderate" or "low," but starting in October the company will add this new Exploitability Index information.
The vulnerabilities listed in Microsoft's bulletins will be rated as "Consistent Exploit Code Likely," "Inconsistent Exploit Code Likely," or "Functioning Exploit Code Unlikely."
This Exploitability Index system will make it easier for customers to decide which patches to install first by giving Windows users a better idea of which bugs Microsoft finds most worrying. The index will separate the flaws that will simply cause a system crash from more serious bugs that could be used to give attackers control of a victim's machine.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (4)
Yes and maybe..By tuomoks on August 6, 2008, 8:31 pmYes - the products get more resilient against security problems but.. The problem with MS as many other corporations is that security is not a product or technology...
Reply | Read entire comment
But they're leaving SNORT out in the coldBy Anonymous on August 6, 2008, 7:34 pm? Then what's the point? It must be the most widely deployed IDS in existance.
Reply | Read entire comment
Microsoft SecurityBy dgaertig on August 5, 2008, 4:01 pmMS security has improved a lot over the years. Still not perfect, but they are getting there. Since Win2008 I have less problems than with 2000/2003. Still, I...
Reply | Read entire comment
Microsoft is working harder to improve its security (and its security image)By Microsoft Subnet on August 5, 2008, 10:33 amDo you think Microsoft Security is improving? As frustrating as it is to be a Microsoft customer and have to deal with this never-ending onslaught of patches (which...
Reply | Read entire comment
View all comments