Steve Lamb's Blog

Security Matters

What's coming in Vista SP1? When will Vista Service Pack 1 be available?

What's coming in Vista SP1? When will Vista Service Pack 1 be available?

  • Comments 4
  • Likes

Steve Clayton's post links to both coverage from MaryJo and the Vista SP1 white paper. Apparently Service Pack 1 is due out in the first quarter of 2008.

Should you wait for it? In a word - NO. The security and easy of use benefits of Windows Vista make it worth upgrading as soon as possible. As Steve mentions there are those (perhaps you) who simply won't install a new operating system until it reaches Service Pack 1. I'm not claiming Vista RTM was perfect but assuming you have a machine with reliable drivers then my experience has been very good indeed.

I understand that upgrading large estates of machines is not a trivial matter and that device driver support and application compatibility are key considerations.

The news on device driver (from the white paper) support is good too:

"Microsoft has added 700,000 new device types since the initial Windows Vista release in November 2006. Including device drivers in the box and those available from Windows Update, by July 2007 Windows Vista supported nearly 2.2 million devices. That covers the vast majority of devices in use. The number of Windows Vista logo devices exceeds 10,000, and the growth is outpacing Windows XP"

Service Pack 1 doesn't bring major new features though it does increase the granularity of existing functionality and of course there are bug fixes in there too.

The whitepaper includes a link to Jeff Jones' Windows Vista 6-month vulnerability report which shows that "Windows Vista had fewer security issues than all the popular operating systems he studied".

I think the following paragraph (from the white paper) sums up the deployment stance of many mainstream organisations:

"Although most companies are cautious when deploying a new operating system, many have already started testing and evaluating Windows Vista for deployment, and some have already deployed Windows Vista into their production environments and begun seeing the business benefits Windows Vista can provide."

Application compatibility has of course been a concern for those considering moving up to Vista on a large scale. It's great to hear that the application compatibility team have worked with Independant Software Vendors (ISVs) to make life as easy as possible for them and have reported that "nearly 2,100 applications now have the Windows Vista logo".

Here's a summary of what's in Service Pack 1 courtesy of the white paper:

"The updates in Windows Vista SP1 fall into three categories, which the following sections describe in detail:

  • Quality improvements, including all previously released updates, which address reliability, security, and performance.
  • Improvements to the administration experience, including BitLockerTM Drive Encryption (BDE).
  • Support for emerging hardware and standards, such as an Extensible Firmware Interface (EFI) and an Extended File Allocation Table (exFAT)."

 

 

 

 

Comments
  • PingBack from http://www.universityupdate.com/Technology/Windows-Vista/4906713.aspx

  • Yes, there are lots of good things to be awaited in this release.

    Yes, I agree that there is little value in waiting for this service pack before going ahead with Vista deployments, although I see most of those being done in 2007 with hardware refresh or for new applications. The old approach of "always wait for the first service pack" makes much less sense with current Beta and RC testing cycles, and the easy deployment of patches through technologies like WU and WSUS.

    BUT! How does removing GPMC from Vista make it more secure? Improve the administration experience? Increase granularity of control (over multiple local policies in particular)?

    This is not quite throwing out the baby with the bath water, but it will get rid of one of our favourite bath toys.

    http://veroblog.wordpress.com/2007/08/31/more-bad-news-for-vista-service-pack-1/

  • AdamV> Why don't you allow anonymous comments on your blog? I'd like to comment the post you refer to but am unable to do so as I don't have a Wordpress account ;-(

    YOU CAN encrypt multiple volumes with BitLocker pre-SP1 AS LONG AS you are prepared to use the command line.

  • Sorry about the comments thing, Steve. I had switched around some options to turn off the requirement for login but still allow me to moderate them and screwed something up. You can now post comments to VeroBlog without a WordPress account.

    I'm pleased to find out that I can already use Bitlocker to secure multiple volumes from the command line. Looks like some more reading is required!

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment