Technique Microsystems Ltd.

I noticed over the weekend that Microsoft's Solution Accelerator team has just released a Beta of Project Codename Sundance. This Solution Accelerator builds on previous Microsoft security guidance and is aimed at helping you configure and deploy security settings for both Windows and Office 2007. With more than 700 security setting recommendations, the guidance and tools included should help fine-tune the security posture of your Windows and Office 2007 deployments.

After deploying the security settings, you can even verify the settings and monitor policy changes by using one or more of 18 new configuration packs designed for the Desired Configuration Management (DCM) feature of Microsoft System Center Configuration Manager 2007.

This solution accelerator can help you in a number of ways:

• Accelerate and secure deployments
  Predefined templates and automated tools enable you to greatly reduce the time required to deploy security settings and monitor security baselines.
• Provide higher reliability
  Eliminate a number of manual steps and get faster, more reliable security results.
• Comprehensive solution
  Includes information about hundreds of security and privacy setting options, as well as recommendations for each one based on best practices.
• Manage risk
  Manage security setting changes in Windows operating systems and Office applications that otherwise could place the integrity of your IT systems at risk.
• Right Price
  It's free from Microsoft Connect.

I invite you to join the Beta Program for Project Codename Sundance and take a look at how it might help you secure your Windows and Office 2007 installations.

To join the Beta Program for Project Codename Sundance, please click on the following link:
https://connect.microsoft.com/InvitationUse.aspx?ProgramID=2682&InvitationID=SUN-698V-PYJF&SiteID=715

After you have joined the program, add the following link to your favorites
https://connect.microsoft.com/site/sitehome.aspx?SiteID=715 

[Edited on 12/17/2008 to provide best user experience for beta program links.]

Good day, Paul Cooke here.

It’s great to be hosting the all new Windows Security Blog. For the last couple of years, we have been talking about what has made Windows Vista the most secure client operating system Microsoft has ever delivered over on the Windows Vista Security Blog. Now, as we start talking about Windows 7 and look for opportunities to discuss relevant security topics in a broader sense, we felt it was a good time to re-launch and re-locate the blog here as part of the Windows Blog.

The purpose of this blog is to make you aware of all the things that go into having a secure Windows environment. This will cover the gamut from Windows XP all the way through the upcoming Windows 7. We plan to post updates regularly and add some variety with guest posters throughout the security space here at Microsoft.

No matter if you are making the move from our old Windows Vista Security Blog or you are joining us for the first time, we welcome you and look forward to your comments. We will work hard to carry on great discussions with all of you!

Good day, Paul Cooke here.<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />

The Windows Vista Security blog has been a great avenue for us to talk with you about what has made Windows Vista the most secure client operating system Microsoft has ever delivered. However, hindsight is always 20/20 and it is clear that while we started with a good cadence of posts, our volume and insights definitely fell off over time. This is unfortunate, for there are a lot of things to talk about when it comes to the security of Windows. Now, as we start talking about Windows 7, and look for opportunities to discuss relevant security topics in a broader sense, we felt it was a good time to revamp the blog.

As a result, we are re-launching and moving this blog as simply the Windows Security Blog. The renewed purpose of this blog is to make you aware of all the things that go into having a secure Windows environment. This will cover the gamut from Windows XP all the way through the upcoming Windows 7. I plan to post updates regularly and add some variety with guest posters throughout the security space here at Microsoft.

Thanks for all of you that have followed this blog for the last few years and I hope you follow us to our new location!

Windows Security Blog | RSS Feed

Good day, Paul Cooke here.<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />

The Microsoft Malware Protection Center has published volume five of the Microsoft Security Intelligence Report. If you have not taken a look at this report before, I urge you to go download it from http://www.microsoft.com/sir. It provides a thorough view of the current threat landscape and is filled with a number of great data points. In my first scanning of the document, the following items immediately jumped out at me:

·         Microsoft vulnerabilities accounted for 42% of the total vulnerabilities on Windows XP for browser based attacks; however, on Windows Vista-based machines the proportion of vulnerabilities attacked in Microsoft software dropped to just 6% of the total. This highlights our not only our continued security investments in the browser but also that attackers are focusing more and more on the applications that run in the browser.

·         The infection rate for Windows Vista is significantly lower than Windows XP, regardless of service pack levels. In addition, 64-bit versions of XP and Vista have lower infection rates than their 32-bit counterparts.

·         The higher the level of service pack a machine runs, the lower the rate of infection. This is consistent across client and server platforms, across all versions. Clearly, keeping up to date with the latest service pack levels and security patches is beneficial from a security perspective. While we have always thought this to be true, having a data point to prove it is great.

This is just a taste of some of the findings in this latest report. I’ll be scouring this report in detail and come back in the next week or so with a comprehensive look at how Windows Vista has fared from a security perspective since its release!

Posting is provided "AS IS" with no warranties, and confers no rights.

Good day, Paul Cooke here.

I am in Barcelona getting set up for some sessions at TechEd-EMEA in Barcelona. The weather was a bit dicey for parts of yesterday but today is clear and beautiful. I've got two full sessions and a bit part in a third where I will be talking about Windows 7 security features. If you are in Barcelona and have a passion for security, come to one of my sessions or find me on the exhibition hall floor, I would love to chat.

Posting is provided "AS IS" with no warranties, and confers no rights.