Monday, December 22, 2014
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Samsung Introduces SE790C Curved Monitor
Chinese Motion-sensing VR Glasses Coming On Kickstarter
Kodak Returns To CES With Consumer Product Line
North Korea Suggests Joint Inverstigation With U.S. Over Sony Hacking
T-Mobile to Pay $90 Million To Settle Case With FCC
New Trojan Targetted Banks Wordlwide
FBI Confirms North Korea Was Behind Sony Hack
Apple Responds To BBC's Allegations Over Working Conditions In Chinese Factory
Active Discussions
Digital Audio Extraction and Plextools
Will there be any trade in scheme for the coming PSP Go?
Hello, Glad to be Aboard!!!
Best optical drive for ripping CD's? My LG 4163B is mediocre.
Hi All!
cdrw trouble
CDR for car Sat Nav
DVD/DL for Optiarc 7191S at 8X
 Home > News > General Computing > Microso...
Last 7 Days News : SU MO TU WE TH FR SA All News

Wednesday, July 28, 2010
Microsoft, Adobe Collaborate to Protect Against Online Threats


Today at the Black Hat USA 2010 conference, Microsoft announced that it will extend its Microsoft Active Protections Program (MAPP) to include vulnerability information sharing from Adobe Systems.

Microsoft also discussed the new policy of coordinated vulnerability disclosure ? a reframing of responsible disclosure ? and introduced new tools and guidance that will improve online security for its customers.

Launched in October 2008 by the Microsoft Security Response Center, MAPP is a collaborative effort that facilitates information sharing on Microsoft product vulnerabilities with security software providers. In fall 2010, Adobe will join Microsoft and share its vulnerability information with the 65 global MAPP members, offering protections to hundreds of millions of people.

"Adobe products are relied on by individuals and organizations worldwide. Given the relative ubiquity and cross-platform reach of many of our products, as well as the continued shifts in the threat landscape, Adobe has attracted increasing attention from attackers," said Brad Arkin, senior director of product security and privacy at Adobe. "We are committed to our customers? security at every level and are excited to leverage MAPP as an important part of our overall product security initiative. MAPP is a great example of a tried and proven model giving an upper hand to a network of global defenders who all rally behind a shared purpose ? protecting our mutual customers."

"Microsoft acknowledges that the constantly changing threat landscape requires a new approach to security ? collaboration and shared responsibility are key as past individual efforts are no longer enough," said Mike Reavey, director of the Microsoft Security Response Center at Microsoft.

Shift to Coordinated Vulnerability Disclosure

In recognition of the endless debate between responsible disclosure and full disclosure proponents and the debate?s ability to detract from productive industry collaboration and customer defense, Microsoft announced it will move to a new practice and philosophy of coordinated vulnerability disclosure.

Microsoft believes coordinated vulnerability disclosure is when newly discovered vulnerabilities in hardware, software and services are disclosed directly to the vendors of the affected product, to a CERT-CC or other coordinator who will report to the vendor privately, or to a private service that will likewise report to the vendor privately. The finder allows the vendor an opportunity to diagnose and offer fully tested updates, workarounds or other corrective measures before detailed vulnerability or exploit information is shared publicly. If attacks are underway in the wild, earlier public vulnerability details disclosure can occur with both the finder and vendor working together as closely as possible to provide consistent messaging and guidance to customers to protect themselves.

Microsoft calls on the broader community ? from security researchers to vendors ? to move to coordinated vulnerability disclosure.

New Tools and Guidance

Microsoft also today released several resources that will help its customers make informed decisions and manage risk.

Enhanced Mitigation Experience Toolkit (EMET). EMET is a free tool that brings newer security mitigations to older Microsoft platforms and applications, both third-party and line of business applications. The tool specifically helps block targeted attacks against unfixed vulnerabilities. The tool will be available in August.

Microsoft vulnerability research (MSVR) paper. The MSVR was launched to share the lessons Microsoft has learned about building more secure software and responding to vulnerabilities in third-party products built on the company?s platform. Since its launch in 2008, the MSVR has worked with more than 30 vendors, helping improve both Microsoft?s software, as well as third-party products, ultimately keeping more people safe online.

A Report: Building a Safer, More Trusted Internet Through Information Sharing. In August 2008, Microsoft launched three security-related programs designed to collectively share more information with partners and customers. As outlined in this report, the three programs ? MAPP, the Microsoft Exploitability Index and the MSVR ? have evolved over the past two years, creating a safer online environment for people around the world.


Previous
Next
Amazon Announces New Kindle        All News        Verbatim Releases BD-R 25GB For 6x Recording
Panasonic to Acquire Shares of and SANYO     General Computing News      Social Networking Sites Reach a Higher Percentage of Women than Men Worldwide

Get RSS feed Easy Print E-Mail this Message

Related News
Tech Giants Support Microsoft In Data Fight With U.S.
Cortana Arrives in France, Italy, Germany, and Spain
Microsoft Creates Tools That Unlock the Power of Living Cells
Microsoft Acquires Mobile Email App Provider Acompli
Microsoft Accidentally Anounced Acquisition Of Acompli
Microsoft Offers Massive Music Deals For The Holidays
Microsoft Slashes Prices Of Xbox One, Surface 3 For Black Friday
Samsung Loses Bid Against Microsoft
Microsoft To Offer Digital Services To Real Madrid Soccer Fans
Microsoft Surface Pro 3 Update Fixes Bugs
Microsoft's 3D Soundscape Technology Research Helps Visually Impaired
Microsoft Buys Cloud-security Company Aorato

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2014 - All rights reserved -
Privacy policy - Contact Us .