Today the team delivered the anticipated Forefront Endpoint Protection 2010 (FEP) public beta to customers. The successor of Forefront Client Security is built on System Center Configuration Manager (SCCM) 2007 R2, allowing customers to use their existing client management infrastructure to deploy and manage endpoint protection.
The end result? Customers will save capital costs on roll-out and also reduce training costs because administrators won't have to learn yet another management user interface.
FEP supports Windows XP, Windows Server 2003 and all subsequent versions of the Windows client and server operating systems. Other new features include:
If you are using System Center currently, you can download the SCCM 2007 R2 trial to understand the features and functionality that it provides to administrators for FEP trial purposes.
We will announce pricing and licensing at a later date and the final product is on track to be available in the fourth quarter of 2010.
Download the Forefront Endpoint Protection 2010 beta here and let us know what you think. Need more information? Check out the Microsoft Forefront homepage and watch the TechNet Edge video below.
Forefront Client Security (FCS) v1.0 is fully supported on Windows 7 and Windows Server 2008 R2 as of August 31, 2009. With the release of new updates available through Windows Server Update Services or Microsoft Update, customers will be able to extend the protection of FCS v1.0 on Windows 7 and Windows Server 2008 R2 systems and incorporate security in their infrastructure upgrade plans. More information on updates needed for this support is provided in a knowledge base article here.
FCS v1.0 will be supported on all of the following versions of Windows 7: Windows 7 Business, Enterprise, Home, and Ultimate. The FCS v1.0 client will also protect Windows Server 2008 R2 Standard Server and Windows Server 2008 R2 Enterprise Server installation. For a full list of supported platforms, please visit http://technet.microsoft.com/en-us/library/bb404245.aspx.
Windows Server 2008 R2 Server Core installation is not supported at this time. However, it is planned to be supported with future updates.
Microsoft Acquires Komoku
Microsoft strengthens anti-malware protection with leading-edge rootkit detection provider.
REDMOND, Wash. — March 20, 2008 — Today Microsoft Corp. announced it has acquired Maryland-based Komoku Inc., a provider of advanced rootkit security detection solutions. Microsoft expects to add Komoku’s functionality into upcoming versions of the Forefront line of enterprise security products and Windows Live OneCare, Microsoft’s all-in-one PC care solution.
“Komoku has been a leader in the area of rootkit detection, doing work for ultra security-conscious customers such as the Department of Homeland Security (DHS) and the Department of Defense (DOD),” said Ryan Hamlin, general manager, Access and Security Division, Server and Tools Business at Microsoft. “Komoku’s cutting-edge expertise and technology will benefit our customers by adding to the robust protection of our anti-malware solutions and help maintain our leading position in anti-malware research and development.”
Founded in 2004, Komoku offers advanced rootkit detection. Rootkits are malicious software programs that are designed to take control of a computer’s operating system at the administrator, or root, level, where they can often hide from detection by standard anti-malware software. Komoku’s customers have included a number of high-security government agencies, including the Defense Advanced Research Projects Agency, the U.S. Navy, the DHS and the DOD.
“I’m excited about the Komoku team joining Microsoft and building on our successes in detecting sophisticated rootkits for customers,” said William A. Arbaugh, president and CTO of Komoku as well as an associate professor of computer science at the University of Maryland at College Park and a renowned expert on rootkits. “Microsoft’s commitment to building the next generation of malware detection is very strong, and we at Komoku look forward to continuing the tremendous progress Microsoft has already made in the anti-malware space and building the anti-malware products that can handle today’s sophisticated threats.”
The Komoku name and product line will eventually be retired as the company winds down its affairs after closing. The majority of Komoku’s staff will join Microsoft in the Access and Security Division. Financial terms of the acquisition were not announced. The deal was completed March 19, 2008.
Founded in 1975, Microsoft (Nasdaq “MSFT”) is the worldwide leader in software, services and solutions that help people and businesses realize their full potential.
#########
Today Microsoft released beta 2 of “Geneva,” our open platform that dramatically simplifies user access and secure collaboration across organizational boundaries.
“Geneva” is part of our Business Ready Security strategy. It supports the strategy’s tenets of “integrating and extending security across the enterprise” and helping to “protect everywhere, access anywhere” through interoperability with heterogeneous environments and third party solutions.
Speaking of which, with beta 2 we’re announcing interoperability between “Geneva” and identity & access solutions from leading partners, via the SAML 2.0 and WS-Federation standards. Interoperable partner solutions include CA Federation Manager and CA SiteMinder, Novell Access Manager, SAP NetWeaver and Sun’s OpenSSO Enterprise and Fedlet software. We are issuing interoperability white papers with these partners and at TechEd this week SAP is presenting on their work with “Geneva.”
“Geneva” addresses a number of important customer challenges:
Implementing cross-organization single sign on
Connecting people and applications with those of other business units, customers, and partners is typically costly, risky and a drag on collaboration. Through identity federation in “Geneva,” IT departments can facilitate collaboration without managing extra user accounts and passwords, or compromising security.
Accessing hosted and cloud services
“Geneva” extends Active Directory authentication and single sign-on to cloud-based services, hosted by Microsoft or others, so IT can securely realize the flexibility and cost savings gains of hosted applications.
Developing identity-aware applications
With the “Geneva” Framework, a developer can apply pre-built application authentication, attribute lookup and authorization for richer, more secure applications…without becoming a security expert.
Simplifying access management
IT organizations have fewer resources to manage more and more applications that have many users, run on multiple platforms and require more complex forms of security. “Geneva” empowers IT to centrally manage access to applications of various types and apply security policy in a standard way across the enterprise.
You can download beta 2 code for all three components of “Geneva:”
· The "Geneva" Server for IT professionals to transform claims and other tokens, manage user access, and enables federation.
· The "Geneva" Framework for developers to build claims-aware .NET applications.
· Windows CardSpace "Geneva” for developers to provide end users with secure online identity management.
“Geneva” is slated for release in the second half of 2009. Download the beta and let us know what you think!
AV-Comparatives.org published the May edition of its proactive/retrospective testing to measure 16 anti-virus vendors’ capability in detecting new threats. Microsoft anti-virus received one of only 3 Advanced+ ratings. Our detection rate was 60%, the second best among the participants, and we had the fewest false positive samples.
This result is consistent with some recent proactive tests conducted by other industry test organizations. In the VB100 April edition, VB introduced a new metric, Reactive and Proactive (RAP), in their test criteria. Vendors scored from 8.0% to 94.7%. Both Forefront Client Security and OneCare score at 80% in the RAP test cases. In addition, in the WildList response time testing by AV-test.org in 2008, Microsoft was in the clear leading position on proactive detection.
For details, see AV-comparatives May edition, published here.