Positive progess on security APIs

Back in September, several of our security partners expressed concern over certain key technologies in Windows Vista such as Windows Security Center and Windows PatchGuard, a technology designed to protect the Windows kernel from advanced attacks such as rootkits.  We were quick to respond to these concerns by providing our partners the needed APIs to enable their applications to affect the Security Center on Windows Vista PCs, thus giving them the option to pre-empt the appearance of multiple security pop-ups, which could have been confusing to some users.

Recently, we shared new plans for APIs again with our security partners, receiving positive feedback in regard to the original concerns they had expressed.  eWeek’s Matt Hines reports on the positive feedback we've received this week.  According to McAfee's chief scientist George Heron, much of the recommendations he submitted outlining McAfee’s concerns were given due consideration:  "Microsoft included some of the recommendations we had submitted, and it appears they did a good job on those.  Overall, McAfee is quite pleased with the path that Microsoft is taking."

Part of the impetus for this development was a push to be more open with our partners and to ensure that a dialogue occurred.  Our Senior Program Manager Stephen Toulouse from the Security Technology Unit explained that MS and our partners were ultimately able to find common ground on concerns over PatchGuard once the technology's benefits were better understood. 

As I've said before, we take feedback from our partners and customers seriously -- they came to us with concerns, we addressed them, and progress is being made that benefits both sides.

Tags: , , , ,

Comments

  1. DO-ITPro
    Posted on: December 23, 2006 at 10:01AM  

    This all sounds great but... The 64bit version of Vista (with KPP) is not supported by any AV vendor I can find (including Microsoft's Forefront product). The one I am using (CA Home product) is one of the few that will even install and this does not run the real time monitor, it only lets me scan...

    How am I supposed to install this on user's desktops without a recognised AV solution in place?

    Sure - Windows Vista x86 runs fine... but...

    And what about all the other stuff that won't run in Vista x64 like the Realtek and SoundBlaster soundcard drivers (the SoundBlaster one doesn't work at all and the Realtek (award winning) driver won't let you record from the line in - and doesn't work properly with the apps either). Even Microsoft stuff doesn't run... Try installing PowerShell for Windows Vista 64bit (the correct version, as written on the tin) which is distributed as a Windows update package. When you try and run this "update" Vista says "Windows doesn't need this update" and drops out.

    Yes, the APIs may be great, the AV vendors may be over the moon, but it is all hype. We need substance!!!

    D.O. IT Pro

  2. CoLDFiRe
    Posted on: December 24, 2006 at 9:43AM  

    NOD32 Ver 3.7+ fully works with Vista RTM x64 & x86.

  3. CoLDFiRe
    Posted on: December 24, 2006 at 11:11AM  

    Oppps i mean Version *2.7.

  4. TerryC
    Posted on: December 27, 2006 at 2:01PM  

    >>we take feedback from our partners and customers seriously

    Microsoft has got to be more proactive with their partners.  Microsoft knows that hundreds of companies develop products for their platform, but the mechanisms they incorporate to work with these companies are 99% reactive and only 1% proactive.

    For example, when developing Vista Microsoft did not actively engage the security vendors to exchange valuable information.  It is not until the last minute that information is made available to the vendors.  Then Microsoft does not take the feedback seriously UNTIL the security vendors make their unhappiness public.  

    Microsoft can't take the high road on this issue.  They are slow to work with other vendors and they don't welcome feedback until it is forced on them.

  5. Nick White
    Posted on: December 27, 2006 at 2:16PM  

    Hey DO-ITPro:  FYI, a quick Web search turns up a few 64-bit anti-virus programs that do indeed support Windows Vista, among them being avast! by ALWIL Software.

    64-bit apps are admittedly somewhat slower to come to market than more standard 32-bit apps, but I'd expect that to change fairly rapidly upon the retail release of Windows Vista, and as enterprises continue their deployments of Windows Vista.

  6. Benedict
    Posted on: December 29, 2006 at 8:11PM  

    What about intentional user installed rootkits?

    I work with a number of processes that I want "hidden" from other processes. The easiest way to do this is via a rootkit that "kills" the process and leaves it a zombie.

    Can I still do this in vista? Does it just require elevation?

  7. Michael_Moor
    Posted on: January 31, 2007 at 12:47PM  

    Hey "Nick White",thx for share

    ---------

    http://www.dl4all.com

  8. Windee
    Posted on: August 07, 2008 at 1:22PM  

    Hello,

      I found this site because I need some answers.   I have Windows Vista and my experienced observation over the last 2 years is that it takes over my computer whenever it wants to.  It wants to update all the time (doesn't that take up room on my computer?), when it wants to update, my computer freezes everything I am doing, the screen turns black, then comes back up doing updates.  I set a time for it to do it at 3am.  That didn't work, it ignored my time.  Now, it can't update unless it asks me, but, my computer runs slower while the icon is on the bottom of my desk-top and I cannot get rid of the icon, unless I ...update.  Today in particular, Microsoft Office tried to install Outlook on my computer, every time I canceled it came right back.  beginning two days ago, Mozilla Fox began popping up little windows that slowed my computer down, even halted some of my programs until I shut them.  It is my computer...right?  I bought it.  Why does Microsoft act as if it is theirs on loan to me?  And they can make any changes and do anything they want at anytime?  Why is Mozilla Fox and Google acting as if they are a part of Microsoft...are they?  Is there no end to the madness?  Is it too much to ask for a computer that will do only what I want, when I want?

                               Windee

  9. Mobile
    Posted on: August 29, 2009 at 11:05AM  

    well jimall you have shared a very vital info with us! i appreciate it.

Recent Posts

Tags

View more
© Copyright 2009 Microsoft Corporation. All Rights Reserved.   |   Privacy Statement