TechNet
Products
IT Resources
Downloads
Training
Support
Products
Windows
Windows Server
System Center
Internet Explorer
Office
Office 365
Exchange Server
SQL Server
SharePoint Products
Lync
See all products »
Resources
Curah! curation service
Evaluation Center
Learning Resources
Microsoft Tech Companion App
Microsoft Technical Communities
Microsoft Virtual Academy
Script Center
Server and Tools Blogs
TechNet Blogs
TechNet Flash Newsletter
TechNet Gallery
TechNet Library
TechNet Magazine
TechNet Subscriptions
TechNet Video
TechNet Wiki
Windows Sysinternals
Virtual Labs
Solutions
Networking
Cloud and Datacenter
Security
Virtualization
Updates
Service Packs
Security Bulletins
Microsoft Update
Trials
Windows Server 2012 R2
System Center 2012 R2
Microsoft SQL Server 2012 SP1
Windows 8.1 Enterprise
See all trials »
Related Sites
Microsoft Download Center
TechNet Evaluation Center
Drivers
Windows Sysinternals
TechNet Gallery
Training
Training Catalog
Class Locator
Microsoft Virtual Academy
Free Windows Server 2012 courses
Free Windows 8 courses
SQL Server training
e-Learning overview
Certifications
Certification overview
MCSA: Windows 8
Windows Server Certification (MCSE)
Private Cloud Certification (MCSE)
SQL Server Certification (MCSE)
Other resources
TechNet Events
Second shot for certification
Born To Learn blog
Find technical communities in your area
Support options
For small and midsize businesses
For enterprises
For developers
For IT professionals
From partners
For technical support
Support offerings
For home users
More support
Microsoft Premier Online
Microsoft Fix It Center
TechNet Forums
MSDN Forums
Security Bulletins & Advisories
International support solutions
Log a support ticket
Not an IT pro?
Microsoft Customer Support
Microsoft Community Forums
Sign in
Microsoft Switzerland Security Blog
Security informations brought to you by the Swiss Security Team.
Tags
Antimalware
Backup
Cloud
Consumer
Developer
email
Enterprise
Forensic
Fun
Guidance
Identity and Access Management
IE
Law Enforcment
Mobile
Network
Office
OS
PKI
Policy
SQL
Strategy
Survey
trends
Virtualization
WiFi
Windows
Browse by Tags
TechNet Blogs
»
Microsoft Switzerland Security Blog
»
All Tags
»
policy
Related Posts
Blog Post:
New Security Development Lifecycle (SDL) Programs
Microsoft Swiss Security Team
As part of its commitment to make the SDL more accessible to every developer, Microsoft is delivering three new programs and tools: discover the Microsoft SDL Pro Network, the Microsoft SDL Optimization Model, and the Microsoft SDL Threat Modeling Tool v3. http://msdn.microsoft.com/en-us/security...
on
24 Nov 2008
Blog Post:
Minimizing User Rights Can Increase Security
Microsoft Swiss Security Team
Taking a least-privilege approach to user accounts is a key part of any in-depth defense strategy, many analysts and security pros say. "I think it's very important … not even just as [a component] of security, but in the broader sense [of] risk posed to the business in IT," said Scott Crawford, an...
on
7 Feb 2008
Blog Post:
Protecting Against Terrorism [PDF]
Microsoft Swiss Security Team
Centre for the Protection of National Infrastructure: This publication offers security advice and good practice for any organisation looking to protect against the risk of a terrorist act or limit the damage such an incident could cause. It sets out how a security plan might be developed and updated...
on
25 Mar 2010
Blog Post:
New Microsoft Windows cloud service for managing and securing PCs: Intune (Beta)
Microsoft Swiss Security Team
Windows Intune Beta Windows Intune simplifies how businesses manage and secure PCs using Windows cloud services and Windows 7—so your computers and users can operate at peak performance, from virtually anywhere. Windows Intune is a comprehensive solution that includes PC management, malware protection...
on
21 Apr 2010
Blog Post:
Microsoft Security Assessment Tool v.3.5 (2008-06)
Microsoft Swiss Security Team
The Microsoft Security Assessment Tool (MSAT) is a free tool designed to help organizations like yours assess weaknesses in your current IT security environment, reveal a prioritized list of issues, and help provide specific guidance to minimize those risks. MSAT is an easy, cost-effective way to begin...
on
23 Jun 2008
Blog Post:
Free Microsoft Security Tool Locks Down Buggy Apps (EMET)
Microsoft Swiss Security Team
EMET, short for Enhanced Mitigation Evaluation Toolkit, allows developers and administrators to add specific security protections to applications. Unlike mitigations released in the past, EMET doesn't require programs to be recompiled, so it can be used to fortify applications even when the source code...
on
2 Nov 2009
Blog Post:
Advances in BitLocker Drive Encryption
Microsoft Swiss Security Team
What's new in Windows Vista SP1 or Windows Server 2008 Bitlocker? http://technet.microsoft.com/en-us/magazine/cc510321.aspx Urs
on
26 May 2008
Blog Post:
Don't blame 'stupid users' for data breaches
Microsoft Swiss Security Team
Security breaches that can be traced back to the actions of one individual are not the fault of one "stupid" employee but rather a failure to educate and engage the whole workforce around the importance of good security practice, according to a leading academic. Speaking at the Cyber Warfare 2008...
on
8 Apr 2008
Blog Post:
Guidelines for the Secure Deployment of IPv6 (Draft)
Microsoft Swiss Security Team
[NIST] With the dwindling number of IPv4 addresses, the Office of Management and Budget (OMB) mandated that U.S. federal agencies begin using the IPv6 protocol. This document provides guidelines for organizations to securely deploy IPv6. http://csrc.nist.gov/publications/drafts/800-119/draft-sp800...
on
4 Mar 2010
Blog Post:
Microsoft Security Compliance Manager released
Microsoft Swiss Security Team
The Security Compliance Manager will help you accelerate knowledge to merge best practices, customize once to centralize decision making, and export to multiple formats to enable monitoring, verification, and compliance. The tool is designed to help accelerate your organization’s ability to efficiently...
on
9 Apr 2010
Blog Post:
9 Ways to Increase the Security of Your Laptop While on the Road
Microsoft Swiss Security Team
Using your laptop to get work done away from your office or on the road is becoming widely accepted. But this rapid growth in laptop computing has made portable systems the target for theft around the world. If your laptop computer is stolen, company information can be exposed, as well as your personal...
on
27 Nov 2009
Blog Post:
Using Autoplay on Vista To Stop Attacks (Islandhoping)
Microsoft Swiss Security Team
The technique of island hopping—penetrating a network through a weak link and then hopping around systems within that network—has been around for years. But it continues to take on new dimensions. In today's security-conscious IT environments, people are often the weakest link, and malicious users are...
on
30 Dec 2007
Blog Post:
ITU study group Q.22/1 - Report on best practices for a national approach to cybersecurity
Microsoft Swiss Security Team
A management framework for organizing national cybersecurity efforts: http://www.itu.int/ITU-D/cyb/cybersecurity/docs/itu-draft-cybersecurity-framework.pdf Urs
on
21 Feb 2008
Blog Post:
THE CABLE GUY: Network Policy Server
Microsoft Swiss Security Team
Nothing’s more critical to the health of your enterprise than a secure network, and Network Policy Server (NPS), new in Windows Server 2008, is an important tool for managing access. It lets you implement organization-wide policies, providing centralized authentication, authorization, and accounting...
on
28 Dec 2007
Blog Post:
High-Tech Copy Machines a Gold Mine for Data Thieves
Microsoft Swiss Security Team
Victor Beitner, a security expert who reconfigures photocopy machines destined for resale in Toronto, says businesses are completely unaware of the potential information security breach when the office photocopier is replaced. They think the copier is just headed for a junkyard but, in most cases...
on
20 Mar 2010
Blog Post:
New Microsoft Security Vulnerability Research and Defense blog
Microsoft Swiss Security Team
The Security Vulnerability Research & Defense blog’s intent is to provide more information about Microsoft vulnerabilities, mitigations and workarounds, and active attacks. http://blogs.technet.com/swi/ Urs
on
29 Dec 2007
Blog Post:
Enterprise@Risk: 2007 Privacy & Data Protection Survey
Microsoft Swiss Security Team
Reportable and multiple privacy breaches rising at alarming rate! Personally identifiable information of customers and employees is being exposed – frequently and repeatedly – potentially putting hundreds of thousands of individuals at risk and exposing organizations to increased liability, according...
on
17 Dec 2007
Blog Post:
End Users Flout Enterprise Security Policies
Microsoft Swiss Security Team
Separate studies show many users understand rules, but they break them anyway. According to the RSA study, about 35 percent of workers routinely make a conscious decision to break enterprise security policy because they want to expedite their work or increase their own productivity. Such users may choose...
on
12 Dec 2007
Blog Post:
So Much Data, So Little Encryption
Microsoft Swiss Security Team
If you go solely by top-level stats on encryption use, you'll come away feeling pretty secure — 86 percent of the 499 business technology professionals responding to our InformationWeek Analytics State of Encryption Survey employ encryption of some type. But that finding doesn't begin to tell the real...
on
27 Nov 2009
Blog Post:
Microsoft Files Patent for HoneyMonkey Exploit Finder
Microsoft Swiss Security Team
Microsoft has filed a patent claim for the Strider HoneyMonkey malware/exploit detection system created by our internal research unit. The claim, currently being reviewed at Peer-to-Patent. The HoneyMonkey system, first discussed in August 2005, is best described as an automated Web patrol that uses...
on
29 Dec 2007
Blog Post:
ISC2: HR given guide to info security skills
Microsoft Swiss Security Team
ISC2, the non-profit international body that educated and certifies information security professionals, today announced the publication of its "Hiring Guide to the Information Security Profession". The free 30-page guide is designed to provide human resources (HR) with best practice tips on how to...
on
22 Jan 2008
Blog Post:
How Microsoft does IT - Showcase information and documentation from Microsoft IT
Microsoft Swiss Security Team
Microsoft IT is regularly posting articles as best practices information about how Mirosoft's internal IT is operating their systems and services. I have picked out some interesting and security related posts: Enabling Information Security through HBI Information Classification Technical Case Study...
on
18 Dec 2007
Blog Post:
Security Secrets the Bad Guys don't want you to know
Microsoft Swiss Security Team
[PCWorld] You already know the basics of internet security, right? But when you've got the basics covered, but you still don't feel secure, what can you do? Here are a few advanced security tips to help you thwart some of today's most common attacks. http://www.pcworld.com/article/201309/security_secrets_the_bad_guys_dont_want_you_to_know...
on
21 Jul 2010
Blog Post:
Tech Insight: Microsoft's IPSec and NAP/NAC
Microsoft Swiss Security Team
Windows' built-in security capabilities offer endpoint alternative to NAP/NAC Microsoft’s support of the IP Security (IPSec) standard was enhanced with the release of Windows Vista this year, and interest in the technology will likely grow with the introduction of Windows 2008. For smaller organizations...
on
29 Dec 2007
Blog Post:
Remote Workers Still Living Dangerously, Cisco Study Says
Microsoft Swiss Security Team
If it seems that -- despite your company's best efforts to educate users about security -- users are actually behaving less responsibly, don't panic. Your organization isn't the only one. In fact, Cisco Systems Inc. today is releasing the results of a disturbing third-party study it commissioned over...
on
7 Feb 2008
>