By Adrienne Hall, General Manager, Trustworthy Computing
One of the things I enjoyed most about the CSA Congress was spending time with people in and around the technology industry and the cloud computing sector. One of the presenters at this year’s congress, held the first week of December in Orlando, Florida, was Philip Lieberman, President of Lieberman Software, a provider of identity management and security products and a Microsoft Gold Certified Partner.
During his plenary address, Philip announced that Lieberman Software’s privileged identity management (PIM) solution, Enterprise Random Password Manager™ (ERPM), is now available on Windows Azure. Later I enjoyed spending time with Philip one to one, learning more about this solution and his business. More >>
Today at the CSA Congress, I had the opportunity to give a presentation on how organizations can benefit from cloud computing and some of the ways Microsoft is working to build trust in the cloud. We know that cloud providers can help improve security and reliability for their customers, while giving them more time to focus on running their own businesses.
I also talked about some of Microsoft’s customers that see cloud services as an important strategic asset that helps grow their businesses and deliver more value to their own customers. One of those companies is Genetec, which provides Internet Protocol (IP) video surveillance and other security services in over 80 countries. See more >>
More and more businesses are considering adopting cloud computing, drawn by the huge savings and benefits the cloud can provide. But are they truly ready, and able to take advantage of this opportunity?
It’s clear that cloud computing can deliver significant value to organizations. But, as you examine your options for building the cloud into your organization’s future, it’s important to assess your readiness to make the move.
See more >>
I remember receiving a call approximately four years ago, asking if Microsoft would be interested in sponsoring a new industry association focused on the burgeoning cloud computing market. At the time, many people had not yet heard the term “cloud computing”, and I recall hearing suggestions that this was merely an existing concept getting a new name.
Microsoft has long been a supporter of industry associations and, once we took a look at what the Cloud Security Alliance (CSA) was trying to accomplish, we signed on as a corporate sponsor. The CSA has been a consistent advocate for trust in the cloud and has helped raise awareness of the requests and requirements from customers moving to cloud services – whether they be private, hybrid solutions, or running in a public cloud. The CSA also provides valuable resources to help customers evaluate cloud providers’ ability to address their security needs, such as the Security, Trust & Assurance Registry (STAR).
It is a pleasure for me to now join the CSA board of directors, and I look forward to engaging in a new capacity as the Alliance moves forward. See more >>
By Tim Rains, Director, Trustworthy Computing
I want to draw your attention to a type of malicious software that has been emerging in increasing numbers in several parts of the world. “Ransomware” is a type of malware that is designed to render a computer or its files unusable until a ransom is paid to the attackers. Ransomware often masquerades as an official-looking warning from a well-known law enforcement agency, such as the U.S. Federal Bureau of Investigation (FBI) or the Metropolitan Police Service of London.
It’s important for small and medium sized businesses to be aware of this type of threat and take precautions to defend themselves from it, because if attackers successfully lock the business out of their systems or encrypt their files, it could have a devastating impact on their business. The good news is that it is fairly easy to help protect yourself from this type of threat. See more >>
Posted by TwC StaffIf you are a regular reader of this blog, you know about many of the ways Microsoft works to improve security in our own products and services, as well as the broader technology industry.
Today, I’m pleased to share an update on another important security offering, the Enhanced Mitigation Experience Toolkit (EMET). EMET helps prevent attackers from gaining access to computers, works well in the enterprise, and protects across a wide range of scenarios. See more >>
Posted by TwC Staff
Microsoft recently released volume 15 of the Microsoft Security Intelligence Report (SIR) (download PDF), with insights on security vulnerabilities, exploit activity, malware and potentially unwanted software, spam, phishing, malicious websites, and security trends worldwide.
Threat awareness can help you protect your organization, software, and people, and the SIR is a great source of data to build that awareness. See more >>
By Mike Reavey, General Manager, Trustworthy Computing
Today, at the RSA Conference Europe in Amsterdam, I gave a presentation on an important update to Microsoft’s security efforts – Operational Security Assurance (OSA). The design of a secure operations methodology is part of our ongoing commitment to enable trustworthy computing in all aspects of our online services, and OSA represents the next evolution of these efforts.
Since 2004, the Microsoft Security Development Lifecycle (SDL) has helped developers to build more secure software from the ground up. But the job doesn’t end there. Attacks do not necessarily target weaknesses in software. Some attacks are operational in nature, while others, like the Flame malware, target both software vulnerabilities and operational weaknesses. Defending cloud services against network attacks requires both strong development practices, like SDL, and a strong operational security regime. The following list includes a number of ways that OSA adds considerable value to the focus on infrastructure issues and operational security.. Read more
By Trustworthy Computing Staff
Microsoft has a longstanding commitment to building technology that improves the lives of people of all ages and abilities. We’re proud of the work we do to provide trusted computing experiences for everyone.
Some of that work includes programs to reach people who may not have experienced our technology before, or may not have used it to its fullest extent. A recent example of this is Exergamers NYC, a public-private partnership in which Microsoft collaborated with New York City government agencies to help seniors benefit from using Kinect for XBOX 360 and Skype.
Together, we set up Exergaming programs at senior centers across the five boroughs of New York, enabling seniors to enjoy a fun workout like Zumba or virtual bowling without using complicated machines or heavy objects. Players can also watch their competitors at other locations and engage with them directly over Skype.
For more details on Exergamers, please see this blog post by Bonnie Kearney from our Accessibility team.
Tomorrow I will have the opportunity to keynote at the RSA Conference Europe and discuss the work I’ve been involved with overseeing Operational Security for Microsoft Online Services. This is a topic that I am deeply passionate about and as Microsoft’s investment in the OneMicrosoft initiative becomes a primary focus of my work in the coming years. Read more