10/20/2005 9:15 AM 1

Transcription

10/20/2005 9:15 AM
Magnus Lindkvist
Microsoft
Secure against
attacks
Protects
confidentiality,
integrity of data
and systems
Manageable
Reducing the frequency of
security updates
Rolling out security updates efficiently
Implementing defense-in-depth measures
Managing access in an
extended enterprise
Better guidance to secure systems
Protects from
unwanted
communication
Controls for
informational
privacy
Products, online
services adhere to
fair information
principles
Service Pack 2
Service Pack 1
Predictable,
consistent and
available
Easy to configure
and manage
Resilient
Recoverable
Proven
Open, transparent
interaction with
customers
Industry leadership
Embracing of
Open Standards
More than 298 million copies distributed
1/3 fewer vulnerabilities; 1/2 the # of criticals
15 times less likely to be infected by malware
Security configuration wizard
More secure by design; more secure by default
More than 3 million downloads
Most popular download in Microsoft history
Helps protect more than 18 million customers
Great feedback from SpyNet participants
Malicious Software
Removal Tool
1.3B total executions; 177 M per month
Focus on most prevalent malware
Dramatically reduced the # of Bot infections
As of September 2005
A secure platform strengthened by security products,
services and guidance to help keep customers safe
Excellence in
fundamentals
Security
innovations
ScenarioScenario-based
content and tools
Authoritative
incident response
© 2005 Microsoft Corporation. All rights reserved.
This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.
Awareness and
education
Collaboration
and partnership
1
10/20/2005 9:15 AM
Identity & Access
Control
Security Development Lifecycle
Security Response Center
Better Updates And Tools
Threat & Vulnerability
Mitigation
Fundamentals
16
69
Service Pack 3
3
Bulletins in Bulletins since
prior period TwC release
41
Microsoft
Update
Automatic Updates
Microsoft
Baseline Security
Analyzer 2.0
Bulletins 868 Days
After Product Release
11
2003
6
Released
05/31/2001
Released
09/28/2003
Released
11/29/2000
810 Days After Product Release
Released
11/17/2003
Bulletins 594 Days
After Product Release
* As of August 31, 2005
69
43
21
20
2
April
Totals:
May
Jun
e
Microsoft = 32
Jul
y
August September
Red Hat = 217
Source: “Security Innovation (March 2005):
"Role Comparison Report: Web Server Role"
Source: “Security Innovation (June 2005):
"Role Comparison Security Report: Database Server Role"
Source: Vendor’
Vendor’s Public Security Bulletins as of 9/30/2005
2
10/20/2005 9:15 AM
Protect against malware and intrusions
Microsoft SDL is producing results
Less total and high severity vulnerabilities
Faster fixes for publicly disclosed issues
42 less highseverity
vulnerabilities
than Red Hat
Microsoft has
lowest total
350
22
300
14
200
150
10
31
86
8
99
250
86
166
128
68
9
53
120
111
Microsoft has
fastest security
response
Medium
Recovery
25
RedHat
57
Debian
57
Stop known and
unknown attacks
Restore to known
good state
Limit impact through
isolation
82
MandrakeSoft
74
SUSE
0
DebianMandrakeSoft
DebianMandrakeSoft SUSE
50 High: June 2002 – May 2003*
Isolation
All Days of Risk
Microsoft
100
Microsoft RedHat
Prevention
20
40
60
80
100
Low
0
AntiAnti-virus
AntiAnti-spyware
AntiAnti-spam
AntiAnti-phishing
Source: “Is Windows More Secure than Linux?”, Forrester, March
2004.
NIST: US National Institutes of Standards and Technology
Desktop firewall
IP Sec
User Account Protection
IE Enhancements
Windows Service Hardening
Network Access Protection
System Restore
Malicious Software Removal
Tool
Intellimirror®
Mitigation
Security Focus Areas
Protecting users from fraud
Giving users better control
Containing malicious software
Key Security Features
Mitigation
Windows Services Hardening
Windows Firewall
Secure Startup
IPSec
Phishing filter to protect against fraudulent Web Sites
Vista: ActiveX OptOpt-in to protect against unwanted actions
Vista: Protected Mode to prevent malicious software
Mitigation
Mitigation
Provides businesses the control they need to protect
against current and emerging malware threats
Microsoft Antigen Line of Products
Highlights
Guards against
current and
emerging
malware threats
Prioritizes data
to help focus
resources on
the right issues
Maximizes the
value of
existing
investments
Unique multimulti-engine approach for faster
detection and broader protection
Integrated virus and spam protection
Integrated Microsoft AV engine
RTM in Q2 2006
3
10/20/2005 9:15 AM
Mitigation
Allow only legitimate users secure, policypolicy-based
access to machines, applications and data
Services
2007
Frontbridge hosted
services for antiantivirus and antianti-spam
filtering
(for businesses)
Windows OneCare
(for consumers) based on
feedback
Next generation of
services
Products
2006
ISA Server 2004
Sybari Antigen antiantispam and antianti-virus
for Email, IM and
SharePoint
Microsoft Client Protection
Microsoft Antigen AntiAntivirus and AntiAnti-spam for
messaging and
collaboration servers
Next generation of security
products
Platform
Current
Windows XPSP2
Windows Server 2003 SP1
AntiAnti-malware tools
Microsoft Update
Windows Server
Update Services
Windows AntiSpyware
Network Access Protection
Windows Vista
IPSec Enhancements
Firewall
Audit Collection Services
Services Hardening
Trustworthy
Identity
Directory Services
Ensure users are
Lifecycle Management
whoAuthentication
they claim
Strong
Federated
Identity
to be; manage
Certificate Services
identity lifecycle
Access Policy
Management
RoleRole-based Access Control
Audit
Collections
Services
Provide
access
Group Policy Management
based on policy
Console
identity lifecycle
Identity & Access
Control
Rights Management Services
Encryption
Services
Protect
data
Secure Protocols and
throughout its
Channels
Backand Recovery
Back-uplifecycle
Services
Identity & Access
Control
2007
Identity
2006
Access
Current
Windows Server 2003
Microsoft Identity
Integration Server 2003
Smart Card Support
Windows Server 2003
Active Directory with
Group Policy
VPN Access
Windows Vista
User Account
Protection
Pervasive Kerberos
Information
Protection
Digital certificate
and smart card
lifecycle
management
Windows Server
and Active
Directory as
the platform
for identity
and access
Information
Protection
Encrypted File System
Windows Rights
Management Services
Data Protection
Manager 2006
Windows Vista
Rights Management
Services
Secure startup
Full Volume Encryption
RMS Client
EFS Improvements
Improved smart card
support
Certificate Authority
Federation Services
Microsoft Identity Integration
Services
Authorization Manager
www.microsoft.com/security/guidance
4
10/20/2005 9:15 AM
Industry partners working together to improve
platform security
Strong community of security partners working together
Enabling interoperability & integration between
applications & platform
Providing customers with a breadth of AllianceAlliance-based
security solutions
Over 1,500 IT Pro’
Pro’s visited security content on Microsoft.com
250 customers downloaded Windows Server 2003 SP1
Over 50,000 users ran the Malicious Software Removal Tool
2 instances of the Sasser worm were removed
149 Bot infections were found and removed
Over 18,000 additional users installed the Windows AntiSpyware Beta
Beta
~7,500 pieces of spyware and other potentially unwanted software were removed
Beta
~11,250 pieces of spyware and other potentially unwanted software
software were removed
Beta
~22,500 pieces of spyware and other potentially unwanted software
software were
removed
5

10/20/2005 9:15 AM 1

Transcription

Similar documents

Mission College

EZStream - ClearOne

matthias kolowrat

konfig - Auto-Trol Technology

African Youth data points – ¼ of worlds next workforce

SVR302: Windows Server code name “Longhorn” Technical Overview

The NCCS State Charity Office Database System

The software that controls your logistic flows The software that

Khalil Abd El