Microsoft sites continue to have security and availability problems.
Microsoft Corp.s road to software as a service has been so pocked by security and availability problems that customers are beginning to question whether such lapses, if not fixed, could keep .Net from becoming a reality.
The crisis of confidence follows a week in which server problems prevented Windows customers from being able to download security
patches for five days and a network overload prevented many subscribers to MSDN (Microsoft Developer Network) from being able to download code for Visual Studio .Net and .Net Framework for more than a day.
The Windows Update site, which provides users with security fixes, was down for five days due to problems with domain name servers, the Redmond, Wash., company said last week.
Some Microsoft customers, such as Timothy Johns, president of Daytona Digital, a system builder in Daytona Beach, Fla., said the fact that it took Microsoft that long to fix the site will hurt confidence and perception about Microsofts ability to keep .Net Web services and the user data associated with them secure and reliable in the future.
"Microsofts update sites appear to be one of their [lowest] priorities," Johns said. "The problems there keep us busy, and it just always makes me wonder what the average user does when faced with these issues."
Microsofts goal is to be a platform provider that sells software and tools for building .Net-enabled sites, as well as the operator of consumer services that work with its Passport authentication system.
Adam Sohn, product manager for Microsofts .Net strategy, said the company is aware of its dual responsibilities. Microsoft is, in fact, developing the framework for a group of consumer Web services known as .Net My Services, said Sohn, who added that the company needs to undertake systems updates in a way that does not affect the service being delivered to customers. "Its all about trust," Sohn said. "You dont buy trust, and you dont hoodwink people into trusting you. Youve got to earn it. We regret the glitches of the past week and any bad experiences users might have had."
But customers say more action and fewer apologies are needed.
"At a corporate level, the success of .Net will also rest largely on Microsofts ability to provide full and timely disclosure of planned changes to the operating environment for all the elements of the .Net infrastructure," said Jim Ayers, manager for Internal Information Systems at defense contractor Northrop Grumman Corp., in Azusa, Calif.
"This especially includes security issues but is not limited to them," said Ayers, adding that 99.999 percent availability is a prerequisite to any Internet service such as .Net.
But while Microsoft is betting its future on the Internet and its .Net strategy, Ayers said, "it cannot currently even support a few developers who paid $2,000 for the privilege of priority access to critical .Net software." Ayers was referring to the MSDN subscribers denied access to the Visual Studio .Net and .Net Framework code last week.
"The way we think we earn the trust of partners and end users is to make a set of assertions as to what our infrastructure [can do] and then to be measured against these and held accountable by independent third parties," Microsofts Sohn said.
The framework Microsoft has decided to adopt for these operations is known internally as "SAS 70" and was "stewarded and shepherded" by the American Institute of Certified Public Accountants, Sohn said.
While Microsoft is still in the architectural phase and still determining what these commercial operating assertions need to be, they would include things such as protection against unauthorized physical access and logical unauthorized access, updated when required in a transparent manner, and effective security and privacy controls to deliver on these policies, Sohn said.
Peter Galli has been a financial/technology reporter for 12 years at leading publications in South Africa, the UK and the US. He has been Investment Editor of South Africa's Business Day Newspaper, the sister publication of the Financial Times of London.He was also Group Financial Communications Manager for First National Bank, the second largest banking group in South Africa before moving on to become Executive News Editor of Business Report, the largest daily financial newspaper in South Africa, owned by the global Independent Newspapers group.
He was responsible for a national reporting team of 20 based in four bureaus. He also edited and contributed to its weekly technology page, and launched a financial and technology radio service supplying daily news bulletins to the national broadcaster, the South African Broadcasting Corporation, which were then distributed to some 50 radio stations across the country.
He was then transferred to San Francisco as Business Report's U.S. Correspondent to cover Silicon Valley, trade and finance between the US, Europe and emerging markets like South Africa. After serving that role for more than two years, he joined eWeek as a Senior Editor, covering software platforms in August 2000.
He has comprehensively covered Microsoft and its Windows and .Net platforms, as well as the many legal challenges it has faced. He has also focused on Sun Microsystems and its Solaris operating environment, Java and Unix offerings. He covers developments in the open source community, particularly around the Linux kernel and the effects it will have on the enterprise.
He has written extensively about new products for the Linux and Unix platforms, the development of open standards and critically looked at the potential Linux has to offer an alternative operating system and platform to Windows, .Net and Unix-based solutions like Solaris.
His interviews with senior industry executives include Microsoft CEO Steve Ballmer, Linus Torvalds, the original developer of the Linux operating system, Sun CEO Scot McNealy, and Bill Zeitler, a senior vice president at IBM.
For numerous examples of his writing you can search under his name at the eWEEK Website at www.eweek.com.
Email
Print
