Following the last month’s launch of Forefront Protection for Exchange, today we are announcing more progress for our Business Ready Security strategy with the release of two new solutions: Forefront Threat Management Gateway 2010 (TMG) and Forefront Unified Access Gateway 2010 (UAG.)
These solutions address two key endpoint security challenges. TMG, available for evaluation and purchase now, helps companies provide safe employee web browsing. UAG, which will release to manufacturing in mid December and be generally available shortly thereafter, enables organizations to give employees (and trusted partners and vendors) secure remote access to corporate resources.
Forefront Threat Management Gateway 2010
Today’s information workers require web access to do their jobs, but web-based threats continue to rise. For example, the recent Microsoft Security Intelligence Report indicated that phishing rose significantly in the first half of 2009, quadrupling in May, and that social networking sites accounted for 76% of all phishing impressions. Securing web use is traditionally challenging for security administrators. Multiple products and vendors create high costs and management difficulty through “security sprawl.”
TMG is a secure web gateway that enables safe employee web use through comprehensive protection against malware, malicious web sites and vulnerabilities. Building on its predecessor, ISA Server 2006, TMG provides new URL filtering, anti-malware, and intrusion-prevention technologies to protect businesses against the latest web-based threats. These technologies are integrated with core network protection features such as firewall and VPN to create a unified, easy-to-manage gateway.
One of the most exciting features of TMG is its use of Microsoft Reputation Services – a new cloud-based system hosted by Microsoft which maintains a centralized database of 45 million (and growing!) web domains and billions of web pages to help customers identify and block malicious web sites. It pulls data from multiple sources, such as Hotmail, the same technology that powers SmartScreen in Internet Explorer 8, the Windows Live Security Platform, and more than 10 partners, such as Brightcloud, M8e6 and FutureSoft. The TMG/ISA blog provides a great overview of TMG and its URL filtering capabilities.
Forefront Unified Access Gateway 2010
Building on its predecessor, Intelligent Application Gateway, UAG enables remote access via managed and unmanaged PCs and mobile devices. Integrating a deep understanding of applications, the health state of end user devices, and the user’s identity – UAG enforces granular access controls, ensures security, and reduces management costs and complexity.
While UAG provides a variety of connectivity options such web publishing and SSL VPN tunnels, one of the best new features is UAG’s support and enhancements for Windows DirectAccess (DA). DA is the future of remote access allowing for seamless, always-on connectivity. Always-on keeps users happy as they are continually productive, but it also keeps administrators content as users are “always-managed.” UAG helps make DA deployments simpler, more extensible and easier to scale.
Forefront Client Security received its 11th consecutive VB100 award for the December 2009 Edition of Virus Bulletin. Microsoft Security Essentials for consumers received its first VB100 award for its very first submission. In order to be awarded the VB100, a product must detect 100% of the "WildList" malware samples and not have any false positives on the Virus Bulletin clean file collection.
Details on the Forefront results are here (free registration required.)
As previewed earlier this month, Forefront Unified Access Gateway (UAG) 2010 has been released to manufacturing. The evaluation software is now available here.
Part of our Business Ready Strategy, Forefront UAG enables organizations to give employees (and trusted partners and vendors) secure remote access to corporate resources. With its focus on application intelligence and granular access control, UAG is an ideal solution all of your remote access needs that provides centralized management and policy control across all users, devices, and network resources.
Building on its predecessor, Intelligent Application Gateway, UAG enables remote access via managed and unmanaged PCs and mobile devices. It integrates a deep understanding of applications, the health state of end user devices, and the user’s identity for greater security and reduced management costs.
While UAG provides a variety of connectivity options, such web publishing and SSL VPN tunnels, one of the best new features is UAG’s support and enhancements for Windows DirectAccess (DA). DA is the future of remote access allowing for seamless, always-on connectivity. Always-on keeps users happy as they are continually productive, but it also keeps administrators content as users are “always-managed.” UAG helps make DA deployments simpler, more extensible and easier to scale
The Solution Accelerator team has released a new guide for UAG which outlines the critical infrastructure design elements that are key to the successful implementation. Use this guide to shorten your Forefront UAG infrastructure planning and deployment time!
· Download the IPD Guide for Microsoft Forefront Unified Access Gateway.
· Visit the Forefront Unified Access Gateway page on TechNet to learn more.
We've published the following white papers for deploying and managing the new Forefront Protection 2010 for Exchange.
This white paper discusses the new e-mail hygiene protection features available in the Forefront Protection for Exchange Server 2010 (FPE 2010), illustrates functionality available for protecting Exchange Server deployments at the FPE 2010 RTM time, and outlines integration with Exchange server features contributing to the Forefront antispam solution.
Read this white paper to get answers to antispam questions related to Forefront Protection 2010 for Exchange Server.
Read this white paper to learn how the Forefront Management Shell provides a fully scriptable interface into Forefront Protection 2010 for Exchange Server (FPE 2010). The FPE 2010 administrator console is implemented on top of the PowerShell interface, providing assurance that all functionality provided in the console is also implemented within PowerShell.
This white paper provides insight into the multi-engine antimalware scanning options, as well as the Forefront Protection 2010 for Exchange Server process sequence for malware scanning and filtering. Administrators can leverage this knowledge to maintain a secure and sophisticated messaging system.
Read this white paper to learn about changes to the different types of feedback and data provided by Forefront Protection 2010 for Exchange Server including new dashboard with health monitor, incident and quarantine records, expanded performance counters and e-mail notification improvements.
Today Microsoft's Health Solutions Group announced the acquisition of Sentillion, a company based in Andover, MA which provides healthcare industry solutions for context management, user provisioning and single sign-on (SSO).
The primary goal of the acquisition is to make it easier for healthcare professionals to deliver better patient care by streamlining access to multiple IT applications and patient data. By combining Sentillion’s technologies with Microsoft Amalga UIS, Microsoft aims to give clinicians new insight about patients in real time and enable them to perform the appropriate task with unprecedented speed.
This ties to our efforts in identity & access management - part of the Business Ready Security strategy - to deliver capabilities in the Active Directory platform, and through next-generation products, such as the Microsoft Forefront Identity Manager 2010.
The acquisition brings complementary assets to Microsoft in the areas of single sign-on (SSO), user provisioning and context management that are focused on the healthcare industry. As we integrate Sentillion into Microsoft in the coming months, we will further explore synergies with Microsoft’s identity and access management solutions, such as our Forefront products.