Microsoft Prepares Patch Tuesday Program for Security Vendors
Microsoft will bring security software vendors into the loop about security vulnerabilities prior to Patch Tuesday in a program launching in October. The Microsoft Active Protections Program changes the way Microsoft currently alerts the industry about security threats.Microsoft has signed on to the concept of industry-coordinated security disclosure with a new initiative it will launch in October. Dubbed the Microsoft Active Protections Program, the move will make information on Microsoft's monthly security updates available to a select group of software security vendors before Patch Tuesday. The idea is to give the vendors a leg up on hackers. Under the program, Microsoft will release information such as what conditions have to be present for exploitation and how the vulnerability can be identified.
The move represents a significant change in how Microsoft has done things since it began the monthly updates several years ago, and should aid security vendors scrambling to document vulnerabilities and push out signatures for them to prevent exploitation.