Microsoft expects security effort to take time

Posted by bink on October 9 2003, 3:04 PM. Posted in Security.

Microsoft plans to announce on Thursday a detailed plan to combat a recent wave of security threats, but one executive told CNET things won't change overnight. "I don't think it is a big bang thing," Microsoft Senior Vice President Bob Muglia said in an interview Wednesday. "I think it's an evolutionary, multistep thing."   As earlier reported, Microsoft is moving toward a strategy known as "securing the perimeter," which involves a greater reliance on firewalls and other "shields" to stop hackers from reaching potentially vulnerable PCs. Thus far, Microsoft has focused its efforts on a Trustworthy Computing initiative designed to improve the way the company writes its software as well as on finding flaws and quickly patching them as they are uncovered.

However, Microsoft executives have said in recent weeks that the patch approach alone is not working, with many customers choosing not to install the latest updates to Windows, or at least not quickly enough to thwart hackers.

Microsoft CEO Steve Ballmer first referred to a greater reliance on shield technology during a Sept. 15 speech before a crowd of Silicon Valley executives.

The software giant has come under increasing pressure to step up its security efforts, particularly in the wake of the MS-Blast worm, also known as Blaster. In addition to concern among customers large and small, Microsoft faces a proposed class-action lawsuit in California over its security flaws.

However, Muglia said Microsoft has realized that it needs to take action on more levels to try to thwart hackers.

"You need to have multiple levels of defense," Muglia said, likening it to the steps one might take to secure his or her house.

"You need to have a fence outside your house, sort of like a gated community," he said. "Then you need to have your doors locked and maybe you need your alarm turned on as well."

Muglia stressed that security is Microsoft's top priority right now. "We are also looking at ways we can detect some, whether there is some aberrant behavior that is happening on the network, and find intruders," Muglia said.

At the same time, Muglia said a lot of customers stopped the Blaster attack by using tools that are already available, such as the Internet Connection Firewall that is built into Windows.

"We're looking at ways that we can get customers to...turn ICF on and to make sure ICF is as effective as it can be and tools like it," Muglia said. "The fact is that for most of these customers, there are a lot of steps they can take right now to make themselves less vulnerable." Source