Close
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    Microsofts Charney Renews Battle Cry

    Written by

    Darryl K. Taft
    Published June 3, 2003
    Share
    Facebook
    Twitter
    Linkedin

      eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

      DALLAS—Microsoft Corp.s chief trustworthy computing strategist called on the industry to help out with securing the Internet, and he also introduced a new product and new Microsoft initiatives to assist in the effort.

      Scott Charney, who heads Microsofts security efforts, spoke at the companys TechEd conference here, saying the responsibility for ensuring public safety on the Internet rests with the industry overall. To that end, Microsoft Tuesday announced a new product with VeriSign Inc., of Mountain View, Calif., that will build on the Windows Server 2003 foundation and add public key infrastructure (PKI) capabilities to secure access to enterprise applications, both within and outside corporate boundaries.

      Nico Popp, vice president of product development in the security services division at VeriSign, joined Charney onstage at TechEd to introduce the jointly developed solution.

      VeriSign PKI on top of Windows Server 2003 provides: “ease of deployment, interoperability, ease of use and uncompromising security,” Popp said.

      Popp said the technology will ship by the end of the year and services will be hosted in VeriSign datacenters and also at client sites. In addition, Popp said Microsoft and VeriSign are working together to use digital signatures in e-mail as a tool against spam.

      Meanwhile, Lutz Ziob, general manager of training and certification at Microsoft, announced two new security certification programs for system administrators and systems engineers: the Microsoft Certified Systems Administrator (MCSA: Security) and the Microsoft Certified Systems Engineer (MCSE: Security). The new certification programs are targeted at Windows 2000, with certifications for Windows 2003 coming later this year, the company said.

      Page 2

      Charney filled his speech with anecdotes and one-liners that kept the audience rapt as he drove home his point that security is a joint effort between the industry and users.

      “Attackers pick low-hanging fruit,” he said. “We cannot just rely on the government for public safety; a lot of the responsibility falls on us.”

      Charney said the current situation is full of opportunity for hackers and intruders. Some statistics he included were that there will be 14 billion devices in use by 2010, 35 million users by 2005, and a 65 percent increase in Web sites. Yet, he said, there are about 90 percent detected security breaches, 85 percent detected computer viruses, and 95 percent of all breaches are avoidable with an alternative configuration.

      In short, Charney said playing on the old adage, when the Internet is involved: “An ounce of prevention is worth a ton of cure.”

      For instance, Charney said Microsoft needed new patch management tools so he created a patch management working group and “came up with commandments of patch management. And by the end of the year instead of eight installers well have two: one for operating systems and one for applications.”

      Charney said the issue of security needs to be implemented at the early stages of the development process. The .Net Framework 1.0 led the cause and debuted code access security and the .Net Framework 1.1 build on the Trustworthy Computing foundation, he said.

      Charney said Microsofts strategy is to make its products secure by design, secure by default and secure by deployment. To that end, Microsoft has had more than 2,500 developers doing security testing, including hiring outside “penetration testers” to try to break systems. In addition, Microsoft now offers 60 percent less attack surface than on previous versions of the operating system and with Windows Server 2003, more than 20 services have been changed to be off by default.

      The tenets of Trustworthy Computing at Microsoft include security, privacy, reliability and business integrity. And Charney admonishes his charges to “protect the CIA: confidentiality, integrity and availability.”

      Darryl K. Taft
      Darryl K. Taft
      Darryl K. Taft covers the development tools and developer-related issues beat from his office in Baltimore. He has more than 10 years of experience in the business and is always looking for the next scoop. Taft is a member of the Association for Computing Machinery (ACM) and was named 'one of the most active middleware reporters in the world' by The Middleware Co. He also has his own card in the 'Who's Who in Enterprise Java' deck.

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      MOST POPULAR ARTICLES

      Artificial Intelligence

      9 Best AI 3D Generators You Need...

      Sam Rinko - June 25, 2024 0
      AI 3D Generators are powerful tools for many different industries. Discover the best AI 3D Generators, and learn which is best for your specific use case.
      Read more
      Cloud

      RingCentral Expands Its Collaboration Platform

      Zeus Kerravala - November 22, 2023 0
      RingCentral adds AI-enabled contact center and hybrid event products to its suite of collaboration services.
      Read more
      Artificial Intelligence

      8 Best AI Data Analytics Software &...

      Aminu Abdullahi - January 18, 2024 0
      Learn the top AI data analytics software to use. Compare AI data analytics solutions & features to make the best choice for your business.
      Read more
      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Video

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2024 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×