Security Blog di Feliciano Intini

Feliciano Intini's Microsoft Security Taxonomy 1.0 (last update: 03/02/2008 [UPD-08-03])

Legend: (B)=Blog, (SB)=Security Blog, (W3)=Web Page, (WP)=White Paper, (BK)=Security Book

(Hint: starting on 1/1/2008, new updates will be marked with “[UPD-08-##]” notation to ease the search of new items)

Microsoft Security Experts Blogs (in alphabetic order):

• Aaron Margosis
• Eric Fitzgerald
• Jeff Jones
• Kai Axford
• Kim Cameron
• Mark Russinovich
• Michael Howard
• Robert Hensing
• Steve Lamb
• Steve Riley
• Vittorio Bertocci
  (BK) Understanding Windows CardSpace [UPD-08-03]  
  
  

1.0  Network Security

1.1   ISA Server
(SB) ISA Server Product Team Blog
(W3) ISA Server TechCenter [UPD-08-01]

1.1.1        ISA 2000

1.1.2        ISA 2004

1.1.3        ISA 2006

1.2  Remote Access & Quarantine Services
(SB) Routing and Remote Access Blog       

1.2.1        ISA 2006 QS

1.2.2        Win2003 QS

1.2.3        Win2003 RAS/IAS

1.3  NAP Solution
(SB) Network Access Protection Blog
(W3) NAP Technet Resources
(BK) Windows Server® 2008 Networking and Network Access Protection (NAP)

1.4  VPN Solutions
(SB) ISA Server Product Team Blog

(SB) Routing and Remote Access Blog       

1.4.1        Win2003 RRAS VPN

1.4.2        ISA 2006 VPN

1.4.3        Internet Application Gateway 2007
(W3) IAG 2007 TechCenter  [UPD-08-01]

1.5  Wireless Security
(B) Windows Core Networking Blog

1.6  IPSEC
(B) Windows Core Networking Blog

1.6.1        Win2003 IPSEC

1.6.2        Server & Domain Isolation Solution 

2.0  Host Security                   

2.1  Client OS Security
(SB) Security Tips & Talk [UPD-08-03]

2.1.1        Windows 2000 client security
(WP) Windows 2000 Hardening Guide [UPD-08-02]

2.1.2        Windows XP security
(WP) Windows XP Security Guide [UPD-08-02]

2.1.3        Windows Vista security
(SB) Windows Vista Security Blog
(W3) Windows Vista Security Technet Resources
(WP) Windows Vista Security Guide [UPD-08-02]
(SB) Windows Genuine Advantage Blog
(W3) Genuine Microsoft Software 
(WP) IDC Study: The risks of obtaining and using pirated software

2.2  Server OS Security
(B) Windows Server Team Blog     

2.2.1        Windows 2000 Server security
(WP) Securing Windows 2000 Server [UPCD-08-02]

2.2.2        Windows Server 2003 security
(WP) Windows Server 2003 Security Guide [UPD-08-02]

2.2.3        Windows Server 2008 security
(WP) Windows Server 2008 Security Guide – Exec Overview – Beta [UPD-08-02]
(BK) Windows Server® 2008 Networking and Network Access Protection (NAP)
(BK) Windows Server® 2008 PKI and Certificate Security

2.3  Windows Mobile Security
(B) Windows Mobile Team Blog
(W3) Device Management & Data Security  

2.4  Security Update & Compliance Management solutions           
(SB) Microsoft Security Response Center
(SB) Security Vulnerability Research & Defense

2.4.1        Windows Update, Microsoft Update & Automatic Update Agent
(SB) Microsoft Update Team Blog

2.4.2        WSUS
(SB) WSUS Product Team Blog

2.4.2.1  WSUS 2.0

2.4.2.2  WSUS 3.0

2.4.3        SMS & System Center Configuration Manager

2.4.3.1  SMS 2.0

2.4.3.2  SMS 2003

2.4.3.3  System Center Configuration Manager 2007

2.4.4        Microsoft Baseline Security Analyzer

2.4.4.1  MBSA 1.2.1

2.4.4.2  MBSA 2.0

2.5  Anti-Malware Solutions (for host systems)
(SB) Anti-Malware Engineering Team

2.5.1        Windows Defender

2.5.2        Forefront Client Security
(SB) Microsoft Forefront Client Security Team Blog
(W3) Forefront Client Security TechCenter [UPD-08-01]

2.5.3        Windows Live OneCare
(SB) Windows Live OneCare Team Blog
(SB) Windows Live Safety Center Team Blog
(SB) Windows Live OneCare Family Safety Blog 

3.0  Application Security

3.1  Application & Platform Core Security
(SB) The Security Development Cycle Blog
(SB) Microsoft Application Threat Modeling Blog
(SB) ACE Team (Security, Performance, and Privacy) Blog
(SB) "%41%43%45%20%54%65%61%6d" Blog 

3.2  Client Applications Security

3.2.1        Office Security
(B) Microsoft Office Team Blogs          

3.2.1.1  Office 2000 Security

3.2.1.2  Office XP Security

3.2.1.3  Office 2003 Security

3.2.1.4  Office 2007 Security
(WP) 2007 Microsoft Office Security Guide [UPD-08-02]

3.2.2        Internet Explorer Security
(B) Internet Explorer Team Blog

3.2.2.1  IE 6.0 Security

3.2.2.2  IE 7.0 Security

3.2.2.3  IE 7.0 for Windows Vista Security

3.2.3        Instant Messaging Security

3.2.3.1  Windows Live Messenger Security
(B) Windows Live Messenger Team Blog

3.2.3.2  Office Communicator 2007 Security
(B) Microsoft Office Communicator Team Blog

3.3  Server Applications Security                  

3.3.1        Exchange Security
(B) Microsoft Exchange Team Blog      

3.3.1.1  Exchange 2000 Security

3.3.1.2  Exchange 2003 Security

3.3.1.3  Exchange 2007 Security

3.3.2        SQL Security
(B) Microsoft SQL Server Support Blog

3.3.2.1  SQL 2000 Security

3.3.2.2  SQL 2005 Security

3.3.3        IIS Security
(B) IIS.net Blogs

3.3.3.1  IIS 5.0 Security

3.3.3.2  IIS 6.0 Security

3.3.4        Sharepoint Security
(B) Microsoft Office SharePoint Server Team Blog

3.3.4.1  Windows Sharepoint Services 3.0

3.3.4.2  Microsoft Office Sharepoint Server 2007

3.3.5        Unified Communications Solutions

3.3.5.1  Office Communications 2007 Security
(B) Microsoft Office Communications Server Team Blog

3.4  Anti-Malware Solutions (for Server applications)

3.4.1        Forefront Server Security
(SB) Microsoft Forefront Server Security Blog

3.4.1.1  Microsoft Antigen
(W3) Antigen TechCenter  [UPD-08-01]

3.4.1.2  Forefront Security for Exchange (Exchange 2007)
(W3) Forefront Security for Exchange TechCenter [UPD-08-01]

3.4.1.3  Forefront Security for Sharepoint (Office SharePoint Server 2007 and Microsoft Windows SharePoint Services 3.0)
(W3) Forefront Security for Sharepoint TechCenter [UPD-08-01] 

3.4.1.4  Forefront Server Security Management Console

3.5  Online Services Security

3.5.1        Windows Live ID
(B) Windows Live ID Team Blog

4.0  Data Security                  

4.1  Data Encryption solutions

4.1.1        EFS     

4.1.1.1  EFS in Windows 2000

4.1.1.2  EFS in Windows XP/Server 2003

4.1.1.3  EFS in Windows Vista

4.1.2        RMS Solution
(SB) RMS: Protecting Your Assets.

4.1.2.1  Windows Rights Management Services for Win2003

4.1.2.2  Windows Rights Management Services for Win2008

4.1.3        BitLocker       

4.1.3.1  BitLocker in Windows Vista
(W3) BitLocker Technet Resources

4.1.3.2  BitLocker in Windows Server 2008

4.2  Secure Messaging Solution        

4.2.1        Exchange Hosted Services

4.3  Privacy Enhancing Technologies (PET)  
(SB) The Data Privacy Imperative

5.0  Security Foundations – Technology
(SB) Solution Accelerators - Security & Compliance           

5.1  Identity & Access Solutions         

5.1.1        Active Directory Security
(B) Tim Springston’s Active Directory blog [UPD-08-03]

5.1.2        Identity Lifecycle Manager 2007

5.1.3        Active Directory Federation Services (ADFS) in Windows Server 2003 R2

5.1.4        Certificate Services and SmartCard
(SB) Windows PKI blog
(SB) SmartCard Infrastructure Blog
(BK) Windows Server® 2008 PKI and Certificate Security

5.1.5        Identity Metasystem & Windows CardSpace
(SB) Kim Cameron’s Identity Blog [UPD-08-03]
(SB) Vittorio Bertocci’s Vibro.NET blog [UPD-08-03]
(SB) CardSpace: Behind The Code [UPD-08-03]
(W3) Windows CardSpace MSDN Resources [UPD-08-03]
(W3) Windows CardSpace on Microsoft .NET Framework 3.0 Community [UPD-08-03]
(BK) Understanding Windows CardSpace [UPD-08-03]  

5.2  Security Monitoring & Auditing Solutions         

5.2.1        System Center Operations Manager 2007
(B) Operations Manager Product Team Blog

6.0  Security Foundation – Processes
(B) MOF and Service Management at Microsoft               

6.1  Organizational Security & Policies