Language Selection

English French German Italian Portuguese Spanish

First look at Windows Vista: Secure at last?

Filed under
Microsoft

At the MVP global summit in Redmond, Wash., I had the opportunity to hear from a number of Microsoft insiders, the guys who actually wrote the code, about their goals and philosophy in creating the new operating system and included components such as Internet Explorer 7.0.

I was encouraged by what I heard. Defense in depth was a concept that kept coming up over and over again. Multilayered security is the only way to provide real protection, and Microsoft's commitment to making fundamental changes in the architecture to support that type of protection will give Vista a big security edge over older Windows operating systems.

Another philosophical position we're hearing a lot out of Microsoft employees has to do with "integration of the edge," or the idea that the Internet is the network. This goes along with the well-publicized "death of the DMZ" concept promulgated by Steve Riley, one of the senior program managers in Microsoft's Security Business Unit (you can download Steve's presentation on this topic from his Web site). This theme, in one form or another, ran throughout a number of the Microsoft presentations.

Taken together, these philosophies indicate a whole new way of looking at security, which incorporates strategies such as server and domain isolation and network access protection (NAP) enforcement. Another big focus is on identity authentication and management. We see this everywhere, from proposed antispam technologies such as Sender ID to enterprise/federation level products like MIIS. We also see it in Vista's improvements to such technologies as IPsec and better smart-card support.

Full Article.

Talk is cheap

After reading the full article I'm not convinced that Microshaft has any intentions of completely securing their software. Because of the way Windows registry is set-up I highly doubt that they will be able to successfully implement the necessary safeguards to make it as secure as Linux. And changing it so that only the admin account can add a printer is laughable. ladee-freakin-da lol

Bring me your tired, your poor, your huddled masses, yearning to free themselves from the shackles of mindless desktop experiences

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Uselessd: A Stripped Down Version Of Systemd

The boycotting of systemd has led to the creation of uselessd, a new init daemon based off systemd that tries to strip out the "unnecessary" features. Uselessd in its early stages of development is systemd reduced to being a basic init daemon process with "the superfluous stuff cut out". Among the items removed are removing of journald, libudev, udevd, and superfluous unit types. Read more

Open source is not dead

I don’t think you can compare Red Hat to other Linux distributions because we are not a distribution company. We have a business model on Enterprise Linux. But I would compare the other distributions to Fedora because it’s a community-driven distribution. The commercially-driven distribution for Red Hat which is Enterprise Linux has paid staff behind it and unlike Microsoft we have a Security Response Team. So for example, even if we have the smallest security issue, we have a guaranteed resolution pattern which nobody else can give because everybody has volunteers, which is fine. I am not saying that the volunteers are not good people, they are often the best people in the industry but they have no hard commitments to fixing certain things within certain timeframes. They will fix it when they can. Most of those people are committed and will immediately get onto it. But as a company that uses open source you have no guarantee about the resolution time. So in terms of this, it is much better using Red Hat in that sense. It’s really what our business model is designed around; to give securities and certainties to the customers who want to use open source. Read more

10 Reasons to use open source software defined networking

Software-defined networking (SDN) is emerging as one of the fastest growing segments of open source software (OSS), which in itself is now firmly entrenched in the enterprise IT world. SDN simplifies IT network configuration and management by decoupling control from the physical network infrastructure. Read more

Only FOSSers ‘Get’ FOSS

Back on the first of September I wrote an article about Android, in which I pointed out that Google’s mobile operating system seems to be primarily designed to help sell things. This eventually led to a discussion thread on a subreddit devoted to Android. Needless to say, the fanbois and fangrrls over on Reddit didn’t cotton to my criticism and they devoted a lot of space complaining about how the article was poorly written. Read more