Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

6/12/2006
09:17 AM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

Microsoft Moves Security to 'Forefront'

Microsoft gives its security wares a bold new name and rolls out a new security gateway at Tech Ed 2006

The new name for Microsoft's next-generation security products, Forefront, says it all: Microsoft is fighting to get an edge in the security game.

At its Tech Ed 2006 conference in Boston today, Microsoft unveiled the Forefront brand and released its new Internet Security & Acceleration Server (ISA) 2006 edge security gateway. Executives also provided a glimpse of its upcoming malware/antivirus/intrusion prevention client software (Forefront Client Security) and provided details on Antigen, Microsoft's family of email security products, which were introduced last week.

The software giant anted up with some Windows security statistics. Its Antimalware Team today released a white paper on malware based on data from its Windows Malicious Software Removal Tool (MSRT). The stats gathered by the researchers are impressive: MSRT has removed 16 million instances of malware from 5.7 million different Windows computers over the past 15 months, for instance, and a backdoor Trojan was found in 62 percent of these computers.

Perhaps more telling, though, is Microsoft's acknowledgement of what the rest of the industry already knew: Windows is full of security bugs. In the white paper, Microsoft calls backdoor Trojans a "significant and tangible threat to Windows users."

"It's a bit like the character in 'Casablanca' who's shocked to find gambling going on," says Andrew Jaquith, senior analyst with The Yankee Group. "It's nice to see Microsoft confirming these things, but it's not exactly news."

Microsoft is also playing a little catch-up on the client side, rolling out its upcoming Forefront Client Security (formerly known as Microsoft Client Protection) to compete with Symantec and McAfee's client antivirus and anti-malware software. "Microsoft is trying to position this as a broad, full-service security suite for desktops, and that's a good thing, because it gives [enterprises] more choices here," Jaquith says. "But this is not a new category of products...By the time Microsoft hits the market with this, the other [antivirus and malware] products will be entirely refreshed."

Two new features were added to Forefront Client Security: a scanner that lets users figure out which machines need patches or need to be reconfigured for security reasons; and Single Profile Configuration, a feature that simplifies the deployment of security policies. But the product won't ship until the second quarter of next year, according to Microsoft executives. It's in limited beta now and goes out to public beta in the fourth quarter.

ISA 2006, meanwhile, is an edge security gateway that protects enterprises from Internet-based threats while also providing remote users secure access to corporate data and applications. It's basically a proxy firewall that's also integrated with Active Directory for user authentication and authorization, for instance. It will ship in September.

Next in the Forefront line: Forefront Security for Exchange Server and Forefront Security for SharePoint, both of which will be released with the upcoming Exchange Server 2007 and Office 2007 products, according to a Microsoft spokesperson.

Bottom line: Microsoft must walk a fine line between being open about security holes in its products without shooting itself in the foot. "Microsoft can't say, 'Buy Vista because it's the secure version of Windows'," Jaquith says. "But it has to put the dots out there for its customers to connect."

— Kelly Jackson Higgins, Senior Editor, Dark Reading

Companies mentioned in this article:

  • Microsoft Corp. (Nasdaq: MSFT) Kelly Jackson Higgins is the Executive Editor of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Zero-Factor Authentication: Owning Our Data
    Nick Selby, Chief Security Officer at Paxos Trust Company,  2/19/2020
    44% of Security Threats Start in the Cloud
    Kelly Sheridan, Staff Editor, Dark Reading,  2/19/2020
    Firms Improve Threat Detection but Face Increasingly Disruptive Attacks
    Robert Lemos, Contributing Writer,  2/20/2020
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon
    Current Issue
    6 Emerging Cyber Threats That Enterprises Face in 2020
    This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
    Flash Poll
    How Enterprises Are Developing and Maintaining Secure Applications
    How Enterprises Are Developing and Maintaining Secure Applications
    The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2020-9342
    PUBLISHED: 2020-02-22
    The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. This affects versions before 17.0.605.474 (on Linux) of Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper.
    CVE-2020-9338
    PUBLISHED: 2020-02-22
    SOPlanning 1.45 allows XSS via the "Your SoPlanning url" field.
    CVE-2020-9339
    PUBLISHED: 2020-02-22
    SOPlanning 1.45 allows XSS via the Name or Comment to status.php.
    CVE-2020-9340
    PUBLISHED: 2020-02-22
    fauzantrif eLection 2.0 has SQL Injection via the admin/ajax/op_kandidat.php id parameter.
    CVE-2020-9341
    PUBLISHED: 2020-02-22
    CandidATS 2.1.0 is vulnerable to CSRF that allows for an administrator account to be added via the index.php?m=settings&a=addUser URI.