two
Volume 5, Number 15 -- April 16, 2008

Microsoft Unveils New Security Vision as 'Stirling' Goes to Beta

Published: April 16, 2008

by Alex Woodie

Microsoft unveiled a new "vision" last week at the RSA Security conference called "End to End Trust" that has the far-reaching goals of creating a trusted stack of software, from the hardware to the OS to the applications, while ensuring the privacy of individuals and engaging all parties in a new dialog on the meaning of security and privacy in our new Internet world. Meanwhile, the software company unveiled a new piece of software: the first beta of "Stirling," its integrated security management suite for Windows.

In his keynote speech at the RSA Conference in San Francisco last week, Microsoft's chief research and strategy officer, Craig Mundie, laid out the achievements the company has made since launching its Trustworthy Computing initiative in 2001. He also presented a set of security- and privacy-related goals, as embodied in the new End to End Trust vision, that Microsoft will strive to hit in the future.

"In early 2001, I was asked to take on two things at Microsoft, neither of which I had a lot of experience with, and neither of which were highly coordinated inside the company," he says. "One was security broadly, and the other was privacy."

Since launching the Trustworthy Computing initiative seven years ago, the company has made real progress in security. Windows is, without a doubt, more secure now than it was seven years ago. However, that doesn't necessarily translate into a higher degree of security or privacy for users. Indeed, the higher degree of security in Windows has moved hackers' attention from Windows to finding exploitable flaws in applications. And along the way, the expectation of privacy in computing has suffered, too.

"We sit here in 2008 and it's really clear to me now that despite huge progress on the security side," Mundie says, "the intimacy with which computing touches people's lives . . . is escalating the challenges we have in privacy."

As part of the new End to End Trust vision, Microsoft wants to work with others to create a "trusted stack" Mundie says. "You can't just look at any one piece. You can't say, OK, the operating system is pretty hardened; the applications may or may not be. We really need to stitch these things together in some complete way," he says.

But instead of being a product roadmap, End to End Trust would bring together all interested parties--including software and hardware makers, standard bearers, industry regulators, and even users--to solve the problems of "the four As," or authentication, authorization, access, and audit.

"We need a lot of work. We can't do this by ourselves," Mundie says. "We would like everybody in the industry, whether you're on the legislative side or the government or regulatory side or the users or technical side, to really get more organized in this discussion."

So far, End to End Trust doesn't have much of a presence beyond a Microsoft Web page at www.microsoft.com/mscorp/twc/endtoendtrust/default.mspx, where users can download a white paper on the topic. But if past "vision things" from Microsoft are any indication, you can expect to hear more about End to End Trust from Microsoft in the future, and that's a good thing.

In other news, Microsoft announced the first beta of Forefront Stirling, the codename for a new product, first revealed last June, that will see Microsoft's server, desktop, and network security offerings united into a single product that users can access and control from a single management console.

Stirling will be Microsoft's first end-to-end security suite ("end-to-end" was definitely Microsoft's mantra at RSA 2008). The offering will bundle a central management console with the next-generation of Microsoft's security management products, including Forefront Client Security, Forefront Security for Exchange Server, Forefront Security for SharePoint, and Microsoft Internet Security and Acceleration Server (ISA Server), Forefront Threat Management Gateway.

Forefront Stirling is scheduled for release to market in the first half of 2009. In the meantime, interested parties can register for a copy of the beta at www.microsoft.com/stirling.


RELATED STORIES

Bleak Outlook for Information Security, According to Researchers

Microsoft Unveils 'Stirling' Security Suite


                     Post this story to del.icio.us
               Post this story to Digg
    Post this story to Slashdot

Sponsored By
IT SECURITY

Get Maximum Pain Relief for Your
Windows & Linux Integration!

Directory services play a critical role in ensuring computer networks
are properly secured and efficiently managed.

While Linux machines running in Microsoft Windows networks can
interoperate with Active Directory, configuration is complicated.
This is especially true for administrators lacking Linux expertise.

Download this FREE white paper to learn more.
Editor: Alex Woodie
Contributing Editors: Dan Burger, Joe Hertvik,
Shannon O'Donnell, Timothy Prickett Morgan
Publisher and Advertising Director: Jenny Thomas
Advertising Sales Representative: Kim Reed
Contact the Editors: To contact anyone on the IT Jungle Team
Go to our contacts page and send us a message.

Sponsored Links

COMMON:  Join us at the annual 2009 conference, April 26 - April 30, in Reno, Nevada
LANSA:  It's Time for 4 days of education at the LANSA User Conference, May 4 – 7, in Orlando
NowWhatJobs.net:  NowWhatJobs.net is the resource for job transitions after age 40
 
 

IT Jungle Store Top Book Picks

Getting Started with PHP for i5/OS: List Price, $59.95
The System i RPG & RPG IV Tutorial and Lab Exercises: List Price, $59.95
The System i Pocket RPG & RPG IV Guide: List Price, $69.95
The iSeries Pocket Database Guide: List Price, $59.00
The iSeries Pocket Developers' Guide: List Price, $59.00
The iSeries Pocket SQL Guide: List Price, $59.00
The iSeries Pocket Query Guide: List Price, $49.00
The iSeries Pocket WebFacing Primer: List Price, $39.00
Migrating to WebSphere Express for iSeries: List Price, $49.00
iSeries Express Web Implementer's Guide: List Price, $59.00
Getting Started with WebSphere Development Studio for iSeries: List Price, $79.95
Getting Started With WebSphere Development Studio Client for iSeries: List Price, $89.00
Getting Started with WebSphere Express for iSeries: List Price, $49.00
WebFacing Application Design and Development Guide: List Price, $55.00
Can the AS/400 Survive IBM?: List Price, $49.00
The All-Everything Machine: List Price, $29.95
Chip Wars: List Price, $29.95
 
The Four Hundred
The 64-Core Power6-Based Power 595 Starts to Roll in May

And Then There Was One: The New and Improved Power 570

Sundry Power Systems Announcements

As I See It: Goldilocks and the Zen of IT

Albert Simon Barsa, Jr., 1953-2008

The Linux Beacon
ScaleMP Makes Big SMPs Out of Little Ones

VIA Creates Compact Thin Server, Pushes Linux

Windows and Linux Get a Skinny Blade Server from IBM

The 64-Core Power6-Based Power 595 Starts to Roll in May

And Then There Was One: The New and Improved Power 570

Four Hundred Stuff
i-Based SCS500 Internet Phone System Now Available

Raz-Lee Flushes Out Fraud with Application Security Tool

ARCAD Looks to Aid Application Modernization Projects with Updated Software

BOSaNOVA Goes Semi-Rugged with New Thin Client

Quadrant Updates IntelliChief with Web Forms

Big Iron
HP Goes Visual with Application Modernization Tools

Top Mainframe Stories From Around the Web

Chats, Webinars, Seminars, Shows, and Other Happenings

Four Hundred Guru
SQL Doesn't Like Logical Files

Performance Advice from a Mysterious Friend, Part 4

Admin Alert: V6R1 Changes for the i5/OS Administrator, Part 1

System i PTF Guide
April 12, 2008: Volume 10, Number 15

April 5, 2008: Volume 10, Number 14

March 29, 2008: Volume 10, Number 13

March 22, 2008: Volume 10, Number 12

March 15, 2008: Volume 10, Number 11

March 8, 2008: Volume 10, Number 10

The Unix Guardian
The 64-Core Power6-Based Power 595 Starts to Roll in May

HP Rejiggers HP-UX 11i Packaging as Update 2 Ships

Sun Gangs Up Sparc T2+ Chips with Maramba Servers

The Power 575: Grandfather of the Multi-Teraflops Power7 Monster

Most CIOs Say 2008 IT Budgets Are Stable, So Far

Four Hundred Monitor
Four Hundred Monitor's
Full iSeries Events Calendar

THIS ISSUE SPONSORED BY:

MKS
SafeData
IT Security
Storage Guardian
Guild Companies


Printer Friendly Version


TABLE OF CONTENTS
Will Bloat and Complexity Get the Best of Windows? Probably Not

More Wheeling, But No Dealing in Micro-Hoo

Microsoft Unveils New Security Vision as 'Stirling' Goes to Beta

As I See It: Misera Plebs Contribuens

Windows and Linux Get a Skinny Blade Server from IBM

But Wait, There's More:
BOSaNOVA Goes Semi-Rugged with New Thin Client . . . IBM to Launch Mashup Center Beta in April . . . Qualys Adds Security and Regulatory Policy Compliance to SaaS Offering . . . ScaleMP Makes Big SMPs Out of Little Ones . . . IBM Buys FilesX for Continuous Data Protection Software . . .

The Windows Observer

BACK ISSUES





 
Subscription Information:
You can unsubscribe, change your email address, or sign up for any of IT Jungle's free e-newsletters through our Web site at http://www.itjungle.com/sub/subscribe.html.

Copyright © 1996-2008 Guild Companies, Inc. All Rights Reserved.
Guild Companies, Inc., 50 Park Terrace East, Suite 8F, New York, NY 10034

Privacy Statement