Microsoft: XP Dramatically More Secure

 
 
By eweek  |  Posted 2001-10-22 Email Print this article Print
 
 
 
 
 
 
 

As Microsoft Corp. prepares for the official launch of its Windows XP operating system, enterprise IT managers still have many questions.

As Microsoft Corp. prepares for the official launch of its Windows XP operating system, enterprise IT managers still have many questions. These range from how effectively security issues are being addressed in the product to what benefits Windows XP has over its predecessor, Windows 2000. Jim Allchin, group vice president of Microsofts Platforms Group, spoke to eWeek Senior Editor Peter Galli about these issues.

eWeek: A large number of corporate users who have already upgraded to Windows 2000 or are in the process of doing so wonder what incentive and benefit moving to XP will have for them in the short term.

Allchin: The majority of enterprises still havent moved to Windows 2000, although many are on their way. The difference between the Windows 9x code base and Windows XP is like night and day. Its a totally different experience in terms of the robustness, the security, ease of use, performance and manageability.

While Windows 2000 users already have a huge step-up in terms of reliability, one of the nice things about Windows XP is that it can look like a Windows 2000 system, so the training curve ... for users is not as dramatic as you might think.

The Remote Desktop feature in XP is also key for corporate users with mobile workers connecting in. Mobile and wireless support is also key. Windows XP supports the 802.1x standard, which is not in the prior system and provides a superior level of wireless security.

The video technology found in Windows Messenger is also critical now. People are traveling less and videoconferencing more. With Windows Messenger, XP does not have to go out and talk to the Internet at all. It allows videoconferencing within a company across remote locations all through the intranet. That is a very powerful business tool that will be used more and make the real-time communications capabilities in XP even more essential.

eWeek: While security seems to be less of an issue with XP than it was with 2000 and the operating systems before that, users still say XP remains vulnerable. What are you telling customers about security issues in XP and how they are being handled?

Allchin: Windows XP is dramatically more secure than Windows 2000 or any of the prior systems. Buffer overflow has been one of the attacks frequently used on the Internet. We have gone through all code and, in an automated way, found places where there could be buffer overflow, and those have been removed in Windows XP.

We have also turned off by default a whole set of things so that users are configured in a minimalist kind of way, making them less vulnerable. We also put a Win XP machine naked on the Internet and let people try and crack it. There have been no entrances and no issues so far.

eWeek: Does Microsofts recently announced Strategic Technology Protection Program have any impact on XP at all, or is it designed only for the server side?

Allchin: While it is heavily for the server, it is also for the client. It goes back over Windows 2000 as well, as we want to support those customers. Win XP already had technology to accept critical fixes in a pretty much automated way. In the future, were going to make this even more simple. Windows XP allows you to be notified when something should be picked up. What were going to do as part of the STPP is create for enterprises a staging server within their company that the fixes come down off the Microsoft server to, and the administrator can then decide which ones should be picked up by the client. That technology is already in Win XP.

eWeek: Some enterprises are saying that, while Security Wizard could have advantages going forward, they remain concerned about automatically installing patches, as these introduce regression errors and other problems. How are you dealing with that?

Allchin: Well, theres no magic in that regard. We test all our security fixes. With all the security fixes weve published over the last 10 years, we go through a regression for every one, we put it on the Microsoft Web site before we publish it to people, we run it in production here, and we feel very confident about the quality of that. ...

The security fixes that we produce dont include other functionality; they are specifically designed to remove a potential intrusion. One of the things the STPP is trying to do is make it easier for customers to deploy this. The problem recently has not been that the fixes are not available; its that service packs have come out, and people havent deployed them. In some cases, customers are sitting there with intrusions detected a year ago, and people are still running in a vulnerable way. So its very, very scary.

eWeek: Many analysts have said there is unlikely to be a huge spike in sales as a result of XP and that theres more likely to be an initial shifting of numbers within Microsofts product groups that picks up over time. Do you agree with that?

Allchin: Yeah, I think so. While its very hard to predict, given the economy and the like, I think the quality of the product will speak for itself and drive adoption, even from Windows 2000. Remember, of the 525 million-odd machines in the world, some 300 to 400 million of them are running the Windows 9x code base. A lot of these are still in businesses. So XP is a great opportunity to improve the customer experience and the industry. If you build a great product, eventually businesses will move over.

 
 
 
 
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
 
 
Rocket Fuel