Dark Reading
Risky Business
Do more than just cursory scans. Develop
a holistic approach to app security.
Find out how!
Learn to take the ambiguity out of managing IT so you can guide your business forward.
Download now!
Use these tips from Gartner to identify the EPP solution that best suits your business.
Download now!
Microsoft Details Windows 7 Security
Features in upcoming OS reflect Microsoft's strategy of end-to-end trustApr 22, 2009 | 04:27 PM
By Kelly Jackson HigginsDarkReading
SAN FRANCISCO -- RSA CONFERENCE 2009 -- Microsoft this week provided a peek into the security innards of its upcoming operating system, Windows 7.
Amid the backdrop of the software giant's end-to-end trust theme for security -- highlighted by Scott Charney, corporate vice president of Microsoft's Trustworthy Computing Group, in his keynote address yesterday -- Microsoft also outlined new security features that come embedded in the next-generation OS, including application and mobile security controls.
End-to-end trust is especially relevant given today's threats, says Steve Lipner, director of security engineering strategy for Microsoft's Trusted Computing Group. "We're seeing attacks based on rogue AV software today, [for example], and end-to-end trust is a way to assure users what they are downloading was not a malicious artifact. Similarly, targeted attacks sending people spoofed email with a malicious attachment is another great example [of how it could help]," he says.
Paul Cooke, Microsoft's director of Microsoft's Windows enterprise client products, says the key security features in Windows 7 are part of the end-to-end trust model. They include Direct Access, AppLocker, USB thumb-drive support in BitLocker, and updated security features in Internet Explorer 8, such as an anti-clickjacking function. Windows 7 is currently in beta.
Windows 7's Direct Access will let users log into the corporate network and automatically get secure access via IPSec. "IT then can also touch and update their machine," Cooke says. "It works well with NAP [Network Access Protection]," he adds, which validates the client's security posture.
AppLocker lets IT control and secure applications on the client's machine. "It can control executables, scripts, installed software, and DLLs," Cooke says. It lets an organization set up which applications a user can run and then automatically updates them, he says.
BitLocker to Go in Windows 7 will let users encrypt USB thumb drives and SD cards to protect data stored on those devices in the event they are lost or stolen. "Too many USB drives are in the news about being lost," Cooke says.
Microsoft's Charney said in his keynote yesterday that Windows 7 provides some of the key elements of a "trusted stack," where all components on the machine can be authenticated and proved trustworthy.
Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.
Hackers Miss Their Target -- By About 2,000 Miles 09/03/2010
Qualys Releases QualysGuard PCI 5.0 with New Dashboard and Interactive Workflows 09/03/2010
DNS DDOS Threats and Corresponding Mitigation Strategies 03/23/2010
Spoofing Server - to - Server Communication: How You Can Prevent It 03/11/2010
DIGITAL ASSETS
Securing Data in the Cloud
09/01/2010
Application Whitelisting – Preventing the Advanced Persistent Threat
07/29/2010
Subscribe to RSSHackers Miss Their Target -- By About 2,000 Miles
Firewalls Top Purchase Priority In 2010, Survey Says
Misconfigured Networks Are Easiest Prey, Hacker Survey Says
MORE KEYHOLE
Published:2010-08-19
Severity:High
Description:Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not properly reject DTDs in SOAP messages, which allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a crafted DTD, as demonstrated by an entity declaration in a request to samples/wsdl_first_pure_xml, a similar issue to CVE-2010-1632.
Published:2010-08-19
Severity:Medium
Description:Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing stores without referring to the user-defined main disk format, which might allow guest OS users to read arbitrary files on the host OS, and possibly have unspecified other impact, via unknown vectors.
Published:2010-08-19
Severity:Medium
Description:Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store format, which might allow guest OS users to read arbitrary files on the host OS, and possibly have unspecified other impact, via unknown vectors.
Published:2010-08-19
Severity:Medium
Description:Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspecified vectors.
Published:2010-08-19
Severity:Low
Description:Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users to bypass intended access restrictions by leveraging IP address and source-port values, as demonstrated by copying and deleting an NFS directory tree.
|
