1 / 16

Securing Tomorrow’s World Microsoft Security Roadmap

Securing Tomorrow’s World Microsoft Security Roadmap. Ed Gibson & Steve Lamb Microsoft Ltd. Security Development Lifecycle Security Response Center Better Updates And Tools. A secure platform strengthened by security products, services and guidance to help keep customers safe.

breindel
Download Presentation

Securing Tomorrow’s World Microsoft Security Roadmap

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Securing Tomorrow’s WorldMicrosoft Security Roadmap Ed Gibson & Steve Lamb Microsoft Ltd

  2. Security Development Lifecycle • Security Response Center • Better Updates And Tools

  3. A secure platform strengthened by security products, services and guidance to help keep customers safe Awareness and education Collaboration and partnership Scenario-based content and tools Authoritative incident response Excellence in fundamentals Security innovations

  4. Microsoft Update Microsoft Baseline Security Analyzer 2.0 Automatic Updates

  5. Internet Explorer 7 Social Engineering Protections Phishing Filter and Colored Address Bar Dangerous Settings Notification Secure defaults for IDN Protection from Exploits Unified URL Parsing Code quality improvements (SDLC) ActiveX Opt-in Protected Mode to prevent malicious software

  6. Windows Vista- Integrated flexible security Stay More Secure • Anti-malware • Restart Manager • Client-based Security Scan Agent • Control over device installation Communicate More Securely • Network Access Protection • Firewall/IPsec Integration • EFS support for Smart Cards Start More Securely • BitLocker - Full Volume Encryption - Secure Startup - Trusted Platform Module • Code Integrity Run More Securely • Least Privilege  User Account Control • Anti-Phishing and IE Protected Mode - protection from unknown vulnerabilities! • Windows Service Hardening

  7. System Health Servers Network Access Protection Walk-through Corporate Network Restricted Network Remediation Servers Here you go. Can I have updates? Ongoing policy updates to Network Policy Server May I have access? Here’s my current health status. Should this client be restricted based on its health? Requesting access. Here’s my new health status. According to policy, the client is not up to date. Quarantine client, request it to update. According to policy, the client is up to date. Grant access. You are given restricted access until fix-up. Client Network Access Device (DHCP, VPN) Network Policy Server Client is granted access to full intranet.

  8. Malicious Software Removal Tool More than 275 million copies distributed 15 times less likely to be infected by malware Significantly fewer important & critical vulnerabilities Service Pack 2 Security configuration wizard More secure by design; more secure by default More than 4.7 million downloads Service Pack 1 Most popular download in Microsoft history Helps protect more than 25 million customers Great feedback from SpyNet participants 2.4B total executions; 230M per month Focus on most prevalent malware Dramatically reduced the # of Bot infections As of February 2006

  9. © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

  10. Reference Material

  11. Identity & Access Control • Windows Server 2003 • Federation Services • Certificate Services • Smart Card Support • Microsoft Identity Integration Server 2003 • Improved smart cardsupport • “WinFX” • “InfoCard” • Windows “Longhorn” Server • Microsoft Identity Integration Services “Gemini” • Microsoft Certificate Lifecycle Manager • NextGen Active Directory Identity • Windows Server 2003 • Active Directory with Group Policy • Authorization Manager • VPN Access • Windows Vista • Authorization Manager Enhancements • Windows Communication Foundation • Windows “Longhorn” Server • NextGen Access Policy Mgmt Solutions Access • Encrypted File System • Windows Rights Management Services • Data Protection Manager 2006 • Windows Vista • BitLocker • RMS Client • EFS Improvements • Windows Presentation Foundation “XPS” • Windows “Longhorn” Server • Active Directory Rights Management Services Information Protection

  12. Roadmap Threat & Vulnerability Mitigation • Frontbridge hosted services for anti-virus and anti-spam filtering(for businesses) • Windows Live OneCare(for consumers) • Next generation of services Services • Microsoft Client Protection • Microsoft Antigen Anti-virus and Anti-spam for messaging and collaboration servers • ISA Server 2006 • ISA Server 2004 • Sybari Antigen anti-spam and anti-virus for Email, IM and SharePoint • Content filtering services • Next generation of security products Products • Windows XPSP2 • Windows Server 2003 SP1 • Anti-malware tools • Microsoft Update • Windows Server UpdateServices • Network Access Protection • IPSec Enhancements • Audit Collection Services • Windows AntiSpyware • Windows Vista • Firewall • Services Hardening Platform

  13. Enable secure access to information Information Protection Protect against malware and intrusions Next Generation Security and Compliance Threat & Vulnerability Mitigation Fundamentals Identity & Access Control Engineered for the future User Account Control Plug and Play Smartcards Granular auditing Simplified Logon architecture Code Integrity IE Protected Mode Windows Defender IPSEC/Firewall integration Network Access Protection Security Development Lifecycle Threat Modeling Code Scanning Service Hardening BitLocker Drive Encryption EFS Smartcard key storage RMS client Control over removable device installation XPS Document + WPF APIs

  14. www.microsoft.com/uk/security www.microsoft.com/uk/technet/learning © 2006 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only.MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS SUMMARY.

More Related