Forefront Client Security (FCS) received its 10th consecutive VB100 award in the October 2009 Edition of Virus Bulletin. In order for a product to be awarded the VB100 award, it must detect 100% of the WildList malware samples and must not have any false positives (FP) on the Virus Bulletin clean file collection.
FCS received one of the highest scores overall – and the highest among major competitors - in both the proactive and reactive aspects of the new VB RAP (Reactive and Proactive) test, reaffirming the strong result shown in August VB edition and in the May 2009 report from AV-Comparative.org.
Today the team delivered the anticipated Forefront Endpoint Protection 2010 (FEP) public beta to customers. The successor of Forefront Client Security is built on System Center Configuration Manager (SCCM) 2007 R2, allowing customers to use their existing client management infrastructure to deploy and manage endpoint protection.
The end result? Customers will save capital costs on roll-out and also reduce training costs because administrators won't have to learn yet another management user interface.
FEP supports Windows XP, Windows Server 2003 and all subsequent versions of the Windows client and server operating systems. Other new features include:
If you are using System Center currently, you can download the SCCM 2007 R2 trial to understand the features and functionality that it provides to administrators for FEP trial purposes.
We will announce pricing and licensing at a later date and the final product is on track to be available in the fourth quarter of 2010.
Download the Forefront Endpoint Protection 2010 beta here and let us know what you think. Need more information? Check out the Microsoft Forefront homepage and watch the TechNet Edge video below.
Today Microsoft released beta 2 of “Geneva,” our open platform that dramatically simplifies user access and secure collaboration across organizational boundaries.
“Geneva” is part of our Business Ready Security strategy. It supports the strategy’s tenets of “integrating and extending security across the enterprise” and helping to “protect everywhere, access anywhere” through interoperability with heterogeneous environments and third party solutions.
Speaking of which, with beta 2 we’re announcing interoperability between “Geneva” and identity & access solutions from leading partners, via the SAML 2.0 and WS-Federation standards. Interoperable partner solutions include CA Federation Manager and CA SiteMinder, Novell Access Manager, SAP NetWeaver and Sun’s OpenSSO Enterprise and Fedlet software. We are issuing interoperability white papers with these partners and at TechEd this week SAP is presenting on their work with “Geneva.”
“Geneva” addresses a number of important customer challenges:
Implementing cross-organization single sign on
Connecting people and applications with those of other business units, customers, and partners is typically costly, risky and a drag on collaboration. Through identity federation in “Geneva,” IT departments can facilitate collaboration without managing extra user accounts and passwords, or compromising security.
Accessing hosted and cloud services
“Geneva” extends Active Directory authentication and single sign-on to cloud-based services, hosted by Microsoft or others, so IT can securely realize the flexibility and cost savings gains of hosted applications.
Developing identity-aware applications
With the “Geneva” Framework, a developer can apply pre-built application authentication, attribute lookup and authorization for richer, more secure applications…without becoming a security expert.
Simplifying access management
IT organizations have fewer resources to manage more and more applications that have many users, run on multiple platforms and require more complex forms of security. “Geneva” empowers IT to centrally manage access to applications of various types and apply security policy in a standard way across the enterprise.
You can download beta 2 code for all three components of “Geneva:”
· The "Geneva" Server for IT professionals to transform claims and other tokens, manage user access, and enables federation.
· The "Geneva" Framework for developers to build claims-aware .NET applications.
· Windows CardSpace "Geneva” for developers to provide end users with secure online identity management.
“Geneva” is slated for release in the second half of 2009. Download the beta and let us know what you think!
We are happy to announce the availability of Forefront Threat Management Gateway (TMG) 2010 Service Pack 2 (SP2). The service pack is available for download from the Microsoft Download Center.
Here are some of the improvements we are introducing in Forefront TMG SP2:
Visit our TechNet Library for more information.
- The Forefront TMG Team
Hi all – Bill Jensen here, senior product manager for Forefront Threat Management Gateway (TMG.)
TMG Beta 2 is now available for download. For those that do not know, Forefront TMG is the successor to the Internet Security and Acceleration Server, more popularly known as ISA Server.
As we all know, the Web is a great boon to employee productivity. People use the Web every day and all day in the course of their jobs. Web-based applications and social networking sites grow in popularity. But at the same time, the Web presents increasingly dangerous security threats. TMG helps organizations take full advantage of business benefits presented by the Web by keeping malware out and controlling employee Web usage.
The three key features of Forefront TMG Beta 2 that will help customers to do this effectively:
Web Antimalware: This feature will inspect HTTP traffic for malware and viruses. It is a complement to desktop security suites such as Forefront Client Security and enables you to have a central point of control as well as defense in depth.
HTTPS Inspection: More and more Web traffic is being encrypted using HTTPS. This means most firewalls cannot inspect it for malware. Forefront TMG Beta 2 acts as a trusted intermediary that un-encrypts the traffic, inspects it, and then re-encrypts it. This enables it to inspect for malware.
Network Inspection System: A corollary to the rise of Web-hosted attack vectors is the rise of the application-layer attack. The Network Inspection System acts as an application-layer shield for vulnerabilities. This enables you time to complete your system patching and helps close the vulnerability window.
We also plan to include URL filtering to allow or block employee access to Web sites. Administrators will be able to define categories of prohibited sites, such as known malware sites or sites with inappropriate content. (URL filtering is not in Beta 2, however.)
Another new feature that helps improve security is improved integration with Forefront Security for Exchange. For organizations that place Exchange in an Edge role (Forefront Security for Exchange, and Forefront TMG on the same server) there is now a common management interface within Forefront TMG to enable you to simplify your management chores.