Windows - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Windows


Windows XP Gets Independent Security Certification



 By: Ryan Naraine
2005-12-14
Article Rating:starstarstarstarstar / 1


There are 1 user comments on this Windows story.


Rate This Article:
Poor Best
At the Security Summit East in Washington DC, Microsoft announces Common Criteria security certifications for six versions of its flagship Windows operating system.

WASHINGTON, DC—Microsoft Corp. on Wednesday clinched Common Criteria security certification from the U.S. governments National Information Assurance Partnership for six versions of its flagship Windows OS.

At the Security Summit East here, Microsoft announced that all the products earned the EAL 4 + (Evaluation Assurance Level), which is the highest level granted to a commercial product.

The products receiving CC certification include Windows XP Professional with Service Pack 2 and Windows XP Embedded with Service Pack 2. Four different versions of Windows Server 2003 also received certification.

In an interview with Ziff Davis Internet News, director of security engineering strategy at Microsoft Steve Lipner said the certifications are a significant proof point of Redmonds commitment to creating secure software.

Resource Library:

"Not only that, but were committed to an independent outside review of the way weve secured our products," he said.

Common Criteria certification, which was ratified as an international standard in 1999, helps customers in key market segments evaluate IT products when making software purchase decisions and contribute to higher levels of consumer confidence in IT product security, Lipner said.

He said government agencies, financial institutions and other sensitive market segments are very aware of CC certifications and use it to guide decisions on buying software.

During the certification review, Lipner said the various versions of Windows XP and Windows Server 2003 were evaluated in more than 20 real-world scenarios or "workloads" in a testing lab. It includes rigorous and exhaustive testing at the source-code level to determine certifications, he explained.

Critics of Common Criteria certification say the ratings are not a true reflection of the secure nature of a product in general purpose situations because it does not take every general-purpose situation into account.

Microsoft claims security win with new development rules. Click here to read more.

However, Lipner noted that the evaluation looks at things like security features, user authentication and authorization, access control mechanisms, auditing, firewall functions and encryption.

In Microsofts case, he said the EAL 4 + rating complements the companys mandatory SDL (Security Development Lifecycle), which outlines the "cradle to grave" procedures used for software creation at Microsoft.

"This is really a validation of the security features and functions in the products. When combined with the SDL, it will give customers an additional level of confidence in our commitment to security," Lipner added.

Check out eWEEK.coms for Microsoft and Windows news, views and analysis.



  Reader Comments: Windows XP Gets Independent Security Certification
>>> Post your comment now!
I find another helpful recovery tool
I forgot my password before and need help very much. I just try everything I found. at last http://www.resetwindowspassword.com/ helped me to log...
Posted At: 07-20-09
By: linky1124
>>> Post your comment now!
 

 
 
>>> More Windows Articles          >>> More By Ryan Naraine
 


x}ks㶲*Q3皢H푦dKĶ|,8*-EBc!){4 /=hɏxjlFwh4#I"f\8ܢdC3齿O$wmL9P[Ϡ^#WZj:@a5˜؍Nz&pDwd>J`OS{SM)5'Ӡ6ߙ =/3mB}F7\3Ѣcgb^P$ȁ_ ¢%yHCRp֥qɏB;iEaco~{Xe3g71m( C X^P~D;ǎ5G{N̚=3τPcw0}dd9-r4=yͰ*[ƋaF.91rx&м[@,gs'9"ScO$ա%NIp/09Q#@oXSTHԢf̴;gj5[gb}ױ}ǣ# 3E5L֟GBS If[aW ̋ g?LG`B'lǦ"Gml_j| 4v9s8$sz3 wj%NXE ?q74Ja% ;E7rؗCY֌aF-S4uHUZ+R^(ՏiνoSugVotn~^(Z(/ݳ ? n84h;@ryMSj{rNs~N5ox9vty/ȯ;YJM~c?"0QYTţY|/ Z@ ,ֳP?? u/kQ2Z-[zQ-GjR;ғ,f3} 3+i3,-?[:u!usYf0R*CA-t?c;Szqsھy^{7}rڻ&ΧIٙ{F0pgs ϵV Ꟈf O{:$Yz>540V+%%vdCu{Br,Od=h_پBds#7$cM|Ah 2Tc]vjoX ^YKS703h_]#w a4F@L5&h)5?&F`Mab&DJH7Q mR—U/(AM/- 5|*\($ٛ"G;z̈_"ʥgp1S{l.S4epq^oVW͉:]X]uUjZnE?´Tw9yi >^wڤջEo}ǫg%",$ꨦV+t ?JjjG%xPW G@8ʍ??5m!S[ö@ .Sks+k< }0t@6O=3jYcvi(| I}Цޣ<3MH/0i\|{ͣn]?&tno7,AbGa`Ψ6rjLP#iAтMx>tT؎]6}l2w9;-L&w& zrtc` VPCh9N@tmS(r`39;ʹiǀxԘ/.%w2Z}c%n.G))$C[]HPw9J B!\0HV0(VFzzGBJe6Os@PGҹ3qJ\B;7 ˥=*%nqR%a 934YIjL=?꺾n1!G,D`v9J,L.Y O6jԭeRpJ >Ѥ73 Kbi]ye,`b H[%\Ew,t3Asq=7߀s Xw,z0aEiŬ9g߃)9 ira*j +)dz~#JC͸^`é3h{q#%IAg=U檳@tlX+nMo?HՍ݋pz1(+úZJx Hod m_eƠemLGy+-m" IPצ(XkezdxE6*&C 7u=k}0)\TBZȔe0jAsXjgܲ&P WC~0-j(6 SXSq:hzE>]ijێC=<fRqӠMa)e ΤPLM>kQ@/ı``{sp9pJ.k1sM^^W꺰']9g!@0m"aiNR} ش^oZMig#2RXȏ%}\(*JLEl ԑq,YXTر,>0}65{APOK) Ӟ@#@&"#GѠTcD8vi_&<[ >Fc`'z\sgItо&hʰeh8`Zzq&$sDX(TЀah"pHE@xZhp\@E.Zr>J+b"[8 Utl) FujIx-!/?ˇI%$]4X2}=tǜ}h3ʫ2 yEVjL ajE)WJJZ _{}|s??=edԌRp:1< _[ q˻S ?ӇhO?CzCpe0SMwK\i >#]\V`QaSƖ=4FXXoH]M;H̎Ǐz\NR_!<,`(\rRj͔ Q=87~e7ufv9Aخ crAm>qW;'PV:LΣu O#%c:Yd:@ݐkUQlk:,n`w]0>AG50qHG&{3E6856o:+@%5-r ?֊kt)D ^@zC-3b_@7B^+*5"X썿+CbQTh^{p jN&ӁjFB-89k*rWo鸙 y@<sEU ̿.Y`c1s*? <)3p3 `Ϙɧb_k`pl1\Anc>۹+1A^ r66~ &zi1b`7=3#[(4Q*X9 6<`z]Wm"y';"#əN[h 9{~Zz9pY(*"5 Z_AҰg.s_5u_&gnu")JaHxG2gd7(Ъ#iA/%{N1 Qv}b;LʪH٭X+qe l&SRZ/ւ `PS*GzO`"@(}t'fPzQrZ#&;}$JcO 7-FbZ*BBЛ'Q!vQ%Ǹ"ZAY_Mkhs)p B0_\PF.^*"l`^ASf<^ΈےCtK7~ 6F&7 u Yx\[ XLd;yX^5uX"J3dVVZ]`SkZ%$: 7Cd',-BGI}?\%I'sSfn utDo0|7=j#S$GR%*m\䎾ߓN\8ZRE)ݣ,D$d0JP-֫`W%ɠK= J;! |{W !i*6ǷWXOdK!OWƒ"'! M+73,`jbUܘ㯌&м}V{ E D@;nC߱$ ?S-l8)F::~ݕDw{tۃCRT>ir .?kٿn00N 0?VH LЇ_e!)X-u/Z:lb8K} LAIP 4p="ik#Oճnw/?Hms:#8-odD4|7.Iw͏eGJ:7]w9"!λ.YF^99ﴮM10vhRdQfJ}X#s#fDH݀h!us͙b9I.Dz=d_Ug0Tth#)۵}ocs~uk`!旁w1d|PZ#  G@RPOh5[#yst$;3ĞZIh !:e}E/S)Q\(OYYsһnq3Klo}F/JN~NR-[I7c+t,c=^ѯ8ʆ=?UNjw?!>48|㿜yQG$ !rz en1~pAZ}\iԎ8%4 \("?m[ħ{, /䎱=;PHu=L(lOڡ-F]kց39Z)N yux2Ƞ#%tBUݰeNx?HАݙ-p溟8#M[_Fa's ]sOA}i^wl'UFxZ J}~l/t6D(yWe{w#WȊ̅S.r!FtZx@2&\%3 =ki^x̠t+-R!ekEwWUKT⒏E'%:mחB}{k!bi4V3XTV*?B•c+YT^?1;jVş' g|o#'꿛n KN+g?.w?дg=.00yS/7rFK[⹏^}l؏o%~2;- X#No6,-O5uD.I=RSҹUd9"IK%&s;&RD:,VDT=ۈX]&p,u9'}:lǧ`\|ɔo>/<$Jh/Kg/k9x&&܍z t>^Ÿ"ArKx TT&r4c:&2Sɏ(*aYfj9oԏΩzZ;Ei܍I*q[JI4d}&R&%KR$埇]q"q/{iܒvJD~[zlpK-&NuT5>յ1#Er#'].v #Hv:ٕObiWs<6Xx|v!Kh˚E`h]{'7,$\$rB4j91jd\,7UyiJl0jl;WJPrIo`yD׵x.b[HdܲKZo0%|Aw- 0o`&G;rV0 '6E*$di"Z`sĊH«`Wd=<ͧBxNelp 7A$''''e=zA)=ݓw(΃.YH]jRFY,M68ia^Y|cK$ zDo9>K;[Rj#,1֤9^XKh%*ƶEp&;x3?bRN ga>a_ 4B=^'ؒ1;{H=M%c0+걋A$ *gMWeSTV!3 o` [ a Ɩ l@cOü:%''x澊^г䌥 ^H@V4M]aHWZ07.˚*HfaH 0HDi=U#|K[2Oy`9-N@2 7UџtJjRRJYV8ىM`^35Vl ML̓̓̓̓X`KB!z7FnSTwJ` 7J>lEy@ Cq="Idag%SX4_Z"[ :- 诱_ )61M&]jޫg`PJ4!XA"'Ռθhf\ѻ OgggkmKk w7.fѐ=;gX-Q\`;v{0~HOC/z˥fY_rk" )^gB/;/Nsc{$oLxP!Jjgf5sNilLjd6S7{{m_Pso6` l[V6(yV#~\UQ7f=:sJY,ffGbp,Hۼlw3Ղ( ƗY'6d [IHcc;#}c8ET1̭-Y\dnUä&VӿH y.1;>fRSjΝco Pg>k~*~/u~ᩊcj'ǗyZ\ '[ӈa4b1Y}Gj wOQ5In>i>RvExp~x0|7}ṵ3.NeãEFp xeY+ Z I37^H2D?PRo@a]IY0NXJl oLqìf0uۿP}fɷw1ެcb2UȏcʾB~~/W`0fG7¤t'O|D2~QB p :Oorq'H|"D<첔D^W z]kN9-0v /**n?]DG~_*t`q PVb!MT#|nXIAw_Yя TeQO^tM-E*`K%0`ؕŠ=B 0CX^qR3&R4Fce\[SS]Z#[Ԓ#rd! `Bo,"Exa quQ%w /_Z6`;LVPs(m.͂͢E/ tCc%5Tz~zz_ZbiE.c 2WsƌFSj9椷 G]!D4VtHU9 &uA1R`s05̈bvӚ lzZCJ;76]4_q=!o7QxfUJ"nn84vO=rTsEG8atˮHJc[+x6_j~R.gI*]Z 0>k5lV+V+s eR搯Z+)!ϣ7$>K.̉ax Jxec>Hy)~rY-kͳe8..6SI; sF%.`\lGN$(cX ~==-I9~%h\z1W5vᮥq٠vx"g4X/ݥDm+in G,;l63Mg vl"n!Fr9t)6AP/0ƏļT^sn0؞`p.,9+CiZ`3+n{lˊRMȶ8.NS)q2.șfkeJ]ZW ?R)!_~uJ0c&[q{Z wװW1jzN۠A1UL(:_0yDfLW<0՘0t+PʲjNT\֏pY`" aں5g3bwyq(<9NeS{%%H"V|8snj=J<4?T_+Djc"]N*@[`'*o!$)%n67p>9o[x xFY6EP00aLo?fQиOnFs 33f;. l9 :jT 1&F}Dz[7ΥihDVzxL ]ǒ 4B1h^ܘK 1}%&{xCbwT IhR tX(9CȮ KD8^<>+AguUq VH+^@03%_Ч6#&To`9暭wMZ!ՠۻ$ǝ q¶-J-eڟOzWO <5<=F;6ϵM&E`<ejE)sC9ӾXԞpm.4 "Gd;πW}V X\m>ţ(?E_CTĨҋSe0/L̢NfS+t?gg:^.9q Χx/M/GczQ۠_*'M&7bQ9 Hﲓk&5+:v<((('-VFy{mAQ~'O>ny\mvF9?t/3ʡ݌5gϛy|s_d/}/2{ȠE^^d'eSFeQ~0{ s!?0~׃2?=/ rqWU??T? @/?}OP)'ߧ @MV9M@7d_ry[rֺ…)qFy9zPxZLԸ²GpoQV" #<5 bi3׃>Zqz`^= Y>Y"h(x4|s&p&!H81{ VX&@Y$'7 a箩%gh諡z:HåLH|7a5c[&Ǝ4HΝJIUKJ~+jZ}'\#a{sE\I0jP/PPफ़h[vRjoh' yV8an%[zQ"z5~L@NL6"/cFA6of))^uj^"Uv3&Ec(2ǀE {+Tl`@|JP 3q9cۛ]|LAo^2V,ٍ&"mWp^/80~."|e @ \ ީ&QgZlM H/$̸c[ /çn3A Am o-GFFo"9S:aѡ(Y{XnD82sx 2&6u;!a<<Tx#0=fu|qfk6cﺮƝ)Z Dœj@@rv6}ë !d .`⟐N"Ca eF`]׈nBaIy}\'/|0D9FAbg94AأCDOv֦-y 0r['crEħ%>a2_ =4}`^rtD֣ciB 0 łߜ)#,|H𵝦^̀Zԝ:6Zd;\ >gv jTF\|gȌa)xU-Ot$.Q ~xzA߭UdK^ALH\>mz^DltΖbOM帘cw[/AI)H[aD.v <}*u b>v"مxދ?C | a'R1<zH|k,X̨T*L[K |IGAM"Kd7-YݨmˊLsӃ][G3RVv&Хՠ_*9K7"i½oPm b<% *`>.X";>m?'.}F5+J'x| j7;5mTe]ƌQYɶz S~j](Co݊66x}°҂O1SpY ѫvl>cx 'Lwl;5&Tc:۳i|? e Lt4/o90kn>7Q$Lyˍt_f%\!dW< l[ !ۂˌK-Ӭ1sV¥"UX HMX,8.# tmwQh~0r,#Şi#l|@ }(ۉnFTt `GYu`Z+r 8ǩ mxtz utke!.1w:7f˟lׁQ#iȅ+` jD]EtAcY1bRrW`0M.<ȳ(`F,$v"VKjMΡmbqR! acTx 1L(D,Y7u!{xZyƋ{El>WNENE<<Sf}')VSL_Xџ_,P>I*'\ƕ)_Sq||>܉7,w9N[χ<|XYx(~'c(FRqO\|~8)>c34N~pxٖŠ҂%!۝4!ջjɊxO0]\}l4/⍿c014ߛi4VA$摝7yE1um*^(Պ[gv[W셳Qbm٦di29Z{) q֫ͅ46v07Nw6Ȅ В#nvbesl*