1、Microsoft Security StrategySteven AdlerProduct ManagerMicrosoft EMEASession AgendaFocus on Customer ChallengesMicrosoft Security StrategySecure Windows InitiativeStrategic Technology Protection ProgramTrustworthy ComputingBuilding the secure platform.NET FrameworkWindows .NETSummaryQuestionsTechnolo

2、gy, Process, PeopleWhat are the challenges?Products lack security featuresProducts have bugsInsufficient technical standardsDifficult to stay up-to-dateDesign for securityRoles & responsibilitiesVigilanceBusiness continuity plansStay up-to-date with security developmentProblem recognitionSkills shor

3、tageHuman errorProcessPeopleTechnologyTrustworthy ComputingStrategic Technology Protection ProgramSecure Windows InitiativeMicrosoft Security StrategySecure Windows Initiative“Engineering For Security”Goal: Eliminate Every Security Vulnerability Before The Product ShipsPeopleProcessTechnologyIndustr

4、y YardstickSource: Security Focus Secure Windows InitiativePeopleTrain, and keep current, every developer, tester, and program manager in the specific techniques of building secure productsProcessMake security a critical factor in design, coding and testing of every product Microsoft buildsCross-gro

5、up design & code reviewsSecurity Threat Analysis part of every design specRed Team testing and code reviewsFocus not confined to buffer overrunsSecurity bug feedback loop & code sign-off requirements External reviews and testing by consultants and publicTechnologyBuild tools to automate everything p

6、ossible in the quest to code the most secure productsPrefix and Prefast for buffer overrun detectionUpdated as new vulnerabilities foundVisual C+ 7.0 compiler improvementsDomain-specific tools (i.e. RPC security stress)Secure Windows InitiativeExternal Security ReviewFIPS 140-1 evaluation of Cryptog

7、raphic Service Provider (CSP) CompletedGovernment validation of base crypto algorithms in WindowsCommon Criteria evaluation In PreparationEvaluation of Windows source code against International security criteria for evaluating Third party expert review of key componentsSource code licensed to over 8

8、0 universities, labs, and government agenciesGoal: Help customers secure their Windows SystemsPeopleProcessTechnologyStrategic TechnologyProtection ProgramStrategic Technology Protection Program - Customers Need Our HelpI didnt know which patches I neededI didnt know where to find the updatesI didnt

9、 know which machines to updateWe updated our production servers, but the rogue servers got infectedMore than 50% of the customers affected by Code Red were not patched in time for NimdaSTPP: “Get Secure”Coming - Enterprise Security ToolsMicrosoft Baseline Security AnalyzerSMS security patch rollout

10、toolWindows Update Auto-update clientNow - Microsoft Security ToolkitServer oriented security resources.New server security tools and updates, Windows Update bootstrap client for Windows 2000Now - Security Assessment Program OfferingAvailable immediately through MCS/PSSNow - Free Virus Support Hotli

11、neContact your local PSS officeGet SecureMicrosoft Security ToolkitGets Windows NT and 2000 systems to secure baseline, even disconnected netAutomates server updatesOne-button wizard and SMS ScriptsUpdates and Patches Includes all Service Packs and critical OS and IIS patches through 10/15HFNetchk:

12、patch level verifierIIS Lockdown & URLScanSTPP: “Stay Secure”Ongoing - Enhanced Product SecurityProvide greater security enhancements in the releases of all new products, including theWindows .NET Server family Spring 2002 - Federated Corporate Windows Update ProgramAllows enterprise to host and sel

13、ectWindows Update contentSpring 2002 - Windows 2000 Service Pack (SP3)Provide ability to install SP3 + security rollupwith a single rebootJan. 2002 - Windows 2000 Security Rollup PatchesBundle all security fixes in single patchesReduces reboots and administrator burdenCorporate Update Server Solutio

14、nAutomatic Update (AU) clientAutomatically download and install critical updatesSecurity patches, high impact bug fixes and new drivers when no driver is installed for a deviceChecks Windows Update service or Corporate Update server once a dayNew! Install at schedule time after automatic downloads A

15、dministrator control of configuration via registry-based policySupport for Windows .NET Server, Windows XP and Windows 2000Update serverCorporate hosted WU server to support download and install of critical updates through AU clientServer synchronizes with the public Windows Update serviceSimple adm

16、inistrative model via IE Updates are not made available to clients until the administrator approves themRuns on Windows .NET Server and Windows 2000 ServerTrustworthy ComputingGoal: Make devices powered by computers and software as trustworthy as devices powered by electricity. A Trust TaxonomyAvail

17、abilityAt advertised levelsSuitabilityFeatures fit function IntegrityAgainst data loss or alterationPrivacyAccess authorized by end-userReputationSystem and provider brandSecurityResists unauthorized accessQualityPerformance criteriaDev PracticesMethods, philosophyOperationsGuidelines and benchmarks

18、Business PracticesBusiness modelPoliciesLaws, regulations, standards, normsIntentManagement assertionsRisksWhat undermines intent, causes liabilityImplementationSteps to deliver intentEvidenceAudit mechanismsGoalsMeansExecutionBuilding the secure platformGoal: Provide IT with a secure, integrated fo

19、undation for managing how users, business, and technologies connect.Infrastructure (PKI, Directory)Security in depthNetwork (IPSec, Wireless, VPN)Device (PDA, Laptops, PCs, Servers)ApplicationManagementFront EndTypical Application ArchitectureUsersBack EndAuthenticationNetwork AccessAuthorizationAud

20、itAlertsFront EndSecure Network AccessUsersBack EndAuthorizationAuthenticationNetwork AccessFirewallVPNWirelessIPSECAuditAlertsFront EndFlexible AuthenticationUsersBack EndBasicHTTP DigestKerberosCertificatesSmartcardsAuthenticationNetwork AccessAuthorizationAuditAlertsFront EndRich Access ControlsUsersBack EndAuthenticationNetwork AccessAuthorizationAuditAlertsAccess Control