Perimeter
5/14/2010
01:22 PM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

Microsoft Security In 140 Characters Or Less

When Microsoft's JG Chirapurath said he would stick to Twitter's maximum capacity of 140 characters for his responses in our twitterview last week, he wasn't kidding.

When Microsoft's JG Chirapurath said he would stick to Twitter's maximum capacity of 140 characters for his responses in our twitterview last week, he wasn't kidding.My interview with Chirapurath, senior director of Microsoft's identity and security business group, via Twitter last week was fun, interesting, and frustrating -- all at the same time. I'd never conducted a twitterview before, so this was a refreshing change of venue. JG deftly condensed his responses into bite-sized answers -- some that provided insight into Microsoft's strategies, and others that left me wishing I had more than the 30 minutes we had allotted (lesson learned) so I could drill down more on some of the topics.

And the natural Twitter-time lag time between my tweeted questions and his tweeted responses felt like dead-air moments in a television interview.

But one thing I learned from the twitterview format is that while it limits the verbiage, it doesn't leave much room for marketing speak, and its informality makes it a little more personal. It forces stripped-down responses that cut to the chase.

Aside from not carving out enough time for the twitterview, another mistake I made was forgetting to address JG at his Twitter account, @MS_Forefront, in my first few tweets. Anyway, I'm open to any suggestions to improve the experience, so feel free to hit me with some ideas @DarkReading.

Will Dark Reading twitterview again? Absolutely.

Anyway, in case you missed it or want a recap, here's a "twitterscript" of the interview last week:

DarkReading Kelly Jackson Higgins here for Dark Reading, with JG Chirapurath, sr director of Microsoft's ID & security biz grp. Hi JG. #MSFTtweet 2:30 PM May 6th via web

DarkReading Welcome everyone to our twitterview. #MSFTtweet 2:32 PM May 6th via web

DarkReading JG, are you ready to start? #MSFTtweet 2:33 PM May 6th via web

MS_Forefront @DarkReading ready when you are ... I feel 140 charac pithy this AM ^JGC 2:35 PM May 6th via CoTweet

DarkReading Great. What struck me among the anncmnts yesterday by MSFT was the support for 5 different vendor AV engines. Why multivendor? #MSFTtweet 2:37 PM May 6th via web

DarkReading (and feel free to go over 140--I'll remain pithy) .;-) #MSFTtweet 2:37 PM May 6th via web

MS_Forefront@DarkReading - Multivendor coz no one vendor can catch or see all the threats out there. This is the way to go #MSFTtweet 2:39 PM May 6th via CoTweet

DarkReadingWill we see more of this mulitivendor strategy by MSFT in other products? If so, can you say which ones? #MSFTtweet 2:40 PM May 6th via web

MS_Forefront @DarkReading 4 sure in the sec. FPE/FOPE already uses it. TMG uses cloud with info from industry to enable web filtering. ^JGC #MSFTtweet 2:42 PM May 6th via CoTweet

DarkReadingThere's been a lot of discussion of the future of signature-based scanning. How does MSFT see the role of signatures evolving? #MSFTtweet 2:45 PM May 6th via web

MS_Forefront@DarkReading There's always a role for it but the key trend is aggregating thrt int - we vendors have to work 2gether better ^JGC #MSFTtweet 2:48 PM May 6th via CoTweet

DarkReadingOne of our readers asks what advantage is of Forefront Protection for SharePoint 2010 --doesn't it rely (mainly) on signatures? #MSFTtweet 2:49 PM May 6th via web

MS_Forefront@DarkReading 3 thngs. Deep integ w/ SP2010 & BPOS.Prvnts users from up/dwnldng infect docs. Multiengines. Ups the game IMHO ^JGC #MSFTtweet 2:53 PM May 6th via CoTweet

@MS_Forefront How does the new Active Directory FS 2.0 work with CardSpace, and how will it with CardSpace 2.0? #MSFTtweet 2:55 PM May 6th via web

MS_Forefront@DarkReading we're delivering a Cardspace CTP that enables released ADFS 2.0 in WinServer to issue InfoCards ^JGC #MSFTtweet 3:00 PM May 6th via CoTweet

DarkReading@MS_Forefront (Shifting gears a bit here): What is the status of the U-Prove crypto technology MSFT announced at the RSA con? #MSFTtweet 3:03 PM May 6th via web

MS_Forefront@DarkReading - cntng to invest. Rlsd CTP @ RSA int U-Prove with ADFS, WIF. Rlsd a 2nd spec via OSP dscrbng int using WS* & InfoCards. ^JGC 3:08 PM May 6th via CoTweet

MS_Forefront @DarkReading - Got to run. Thanks very much. This was a lot of fun. Let's do this again soon. ^JGC #MSFTtweet 3:09 PM May 6th via CoTweet

DarkReading@MS_Forefront Thank you for your time, JG. We'll have to carve out more time next time. #MSFTtweet 3:11 PM May 6th via web

-- Kelly Jackson Higgins, Senior Editor, Dark Reading Follow Kelly (@kjhiggins) on Twitter: http://twitter.com/kjhiggins Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, September 16, 2014
Malicious software is morphing to be more targeted, stealthy, and destructive. Are you prepared to stop it?
Flash Poll
Title Partner’s Role in Perimeter Security
Title Partner’s Role in Perimeter Security
Considering how prevalent third-party attacks are, we need to ask hard questions about how partners and suppliers are safeguarding systems and data.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0560
Published: 2014-09-17
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

CVE-2014-0561
Published: 2014-09-17
Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567.

CVE-2014-0562
Published: 2014-09-17
Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."

CVE-2014-0563
Published: 2014-09-17
Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to cause a denial of service (memory corruption) via unspecified vectors.

CVE-2014-0565
Published: 2014-09-17
Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0566.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
CISO Insider: An Interview with James Christiansen, Vice President, Information Risk Management, Office of the CISO, Accuvant