Microsoft Security Blog

The official Microsoft blog for discussing industry and Microsoft security topics.

August, 2006

  • Previous Post Created Using Windows Live Writer

    Mostly, I stick to security topics here, but I want to take a moment and say "go get Windows Live Writer." If, like me, you've ever lost a blog entry or had to retype due to any sort of network or web problem, you'll appreciate this simple tool that helps you draft up your blog entry, automatically saving drafts, then posts it up for you. Microsoft launched Windows Live Writer on August 13th, I've just been busy and only tried it late last week. It is downloadable as a Beta, so give it a try, I highly...
  • Where, oh Where, are Perfect Security Features?

    In my recent exploration of Windows Vista x64 security features and Patchguard (see pt1 and pt2 ), one of the issues sent my thoughts in the direction of how "perfect" security feature are (or are not) and how that affected security value to customers. So, here is the scenario. You read about a new security feature in JeffOS that has been reported to improve security. Let's say the feature helps stop exploits of heap overflows. Is this feature perfect? No, it does not stop many, many exploit scenarios...
  • Interview with Patchguard Architect Forrest Foltz (Windows Vista x64 Security - Patchguard follow up)

    Here I am doing my thing, looking at some of the security improvements in Windows Vista x64 (see pt1 and pt2 ), when all of a sudden, Patchguard seems to be hot news . [NOTE: Readers, if you need more details on Patchguard, start with my previous post Windows Vista x64 Security – Pt 2 – Patchguard .] So, leveraging my coveted super power of “walking down the hall”, I tracked down the Windows Architect for Kernel Patch Protection, Forrest Foltz, to get his perspective...
  • Windows Vista x64 Security – Pt 2 – Patchguard

    NOTE: I know this is a long post. If you don’t want to read all the details I discuss here, I still encourage you to go read What Were They Thinking? Anti-Virus Software Gone Wrong , by Skywing, to give you a perspective on “known good” extensions to kernels. Also, as always, this blog post represents my own personal analysis and opinion (based upon my own experience) and not that of Microsoft – and represents my best efforts to figure out what’s really happening. Last week, I posted Windows...
  • Windows Vista x64 Security - Pt 1

    I recently took home a build of Windows Vista for my home machine, which happens to be a dual processor 64-bit Dell machine, and it made me curious about the differences between the x86 and x64 version of Vista – specifically security differences. After doing a brief bit of research, I found three unique security benefits in Vista x64: · Hardware NX protection on globally by default. · Kernel Patch Protection aka Patchguard. · Mandatory Kernel Module and Driver Signing. No eXecute...