Microsoft Blogs and Web Resources about Security

Feliciano Intini's Microsoft Security Taxonomy 2.0 (New version released on June 19, 2008)

Last update: 19/06/2008 [UPD-08-04]

Legend: (B)=Blog, (SB)=Security Blog, (W3)=Web Page, (WP)=White Paper, (BK)=Security Book

(Hint: starting on 1/1/2008, new updates will be marked with “[UPD-08-##]” notation to ease the search of new items)

Microsoft Security Experts Blogs (in alphabetic order):

Aaron Margosis

Cyril Voisin [UPD-08-04]

David LeBlanc [UPD-08-04]

Eric Fitzgerald

Jeff Jones

Kai Axford

Kim Cameron

Kimmo Bergius [UPD-08-04]

Mark Russinovich

Michael Howard

·         (BK) Writing Secure Code 2nd Ed

·         (BK) 19 Deadly Sins of Software Security

·         (BK) The Security Development Lifecycle

·         (BK) Writing Secure Code for Windows Vista

Robert Hensing

Roger Halbheer [UPD-08-04]

Steve Lamb

Steve Riley

Urs P. Küderli [UPD-08-04]

Vittorio Bertocci

·         (BK) Understanding Windows CardSpace [UPD-08-03]

Vladimir Mamykin [UPD-08-04]

0.0    Microsoft Strategy & Initiatives

0.1     Security & Privacy

0.1.1   Trustworthy Computing (TwC)
(W3) Trustworthy Computing homepage [UPD-08-04]

0.1.1.1      End to End Trust
(W3) End to End Trust homepage [UPD-08-04]

0.2     Interoperability
(W3) Interoperability homepage [UPD-08-04]

0.2.1   Interoperability Principles
(W3) Interoperability Principles homepage [UPD-08-04]

1.0    Internet Security

1.1      Identity Metasystem & Windows CardSpace
(SB) Kim Cameron’s Identity Blog [UPD-08-03]
(SB) Vittorio Bertocci’s Vibro.NET blog [UPD-08-03]
(SB) CardSpace: Behind The Code [UPD-08-03]
(W3) Windows CardSpace MSDN Resources [UPD-08-03]
(W3) Windows CardSpace on Microsoft .NET Framework 3.0 Community [UPD-08-03]
(BK) Understanding Windows CardSpace [UPD-08-03]

1.2     Online Services Security
(W3) Microsoft Online Services TechCenter [UPD-08-04]
(WP) Security Features in Microsoft Online [UPD-08-04]

1.2.1      Windows Live Security
(B) Windows Live ID Team Blog

2.0    Perimeter & Network Security

2.1 Forefront Edge Security (Internet Access Protection & Secure Remote Access)
(W3) Forefront Edge Security homepage [UPD-08-04]

2.1.1      Internet Security & Acceleration (ISA) Server
(W3) ISA Server homepage [UPD-08-04]

2.1.1.1     Previous versions: ISA 2000, ISA 2004
(SB) ISA Server Product Team Blog   

2.1.1.2     Internet Security & Acceleration (ISA) Server 2006
(SB) ISA Server Product Team Blog   
(W3) ISA Server TechCenter [UPD-08-01]

2.1.1.3     Forefront Threat Management Gateway (TMG)
(SB) Forefront Stirling Blog  [UPD-08-04]
(W3) Forefront "Stirling" TechCenter [UPD-08-04]

2.1.2      Internet Application Gateway (IAG)
(W3) IAG homepage [UPD-08-04]

2.1.2.1     Internet Application Gateway (IAG) 2007
(W3) IAG 2007 TechCenter  [UPD-08-01]

2.1.2.2     Forefront Unified Access Gateway (UAG)
(SB) Forefront Stirling Blog  [UPD-08-04]
(W3) Forefront "Stirling" TechCenter [UPD-08-04]

2.2 Network Access Protection (NAP) Solution
(SB) Network Access Protection Blog
(W3) NAP TechCenter
(BK) Windows Server® 2008 Networking and Network Access Protection (NAP)

2.3 Remote Access, VPN & Quarantine Services
(SB) Routing and Remote Access Blog
(SB) ISA Server Product Team Blog
(W3) Routing and Remote Access TechCenter
(W3) VPN TechCenter [UPD-08-04] 

2.3.1   ISA 2006 VPN/QS
(W3) VPN Concepts in ISA Server 2006 [UPD-08-04]

2.3.2   Win2003 RAS/IAS/QS
(W3) IAS TechCenter [UPD-08-04]
(W3) Win2003 Remote Access Quarantine homepage [UPD-08-04]

2.3.3   Win2008 NPS
(W3) Win2008 NPS TechCenter [UPD-08-04]

2.4     Wireless Security
(B) Windows Core Networking Blog
(W3) Wireless Networking TechCenter [UPD-08-04]
(W3) Wireless and Mobile Security: Technical Resources [UPD-08-04]

2.5     IPSEC, “Server & Domain Isolation” Solution
(B) Windows Core Networking Blog
(W3) IPSEC TechCenter [UPD-08-04]
(W3) Server & Domain Isolation TechCenter [UPD-08-04]

2.6     Windows Firewall

(W3) Windows Firewall TechCenter [UPD-08-04]

3.0  Operating System Security                  

3.1      Client Operating System Security
(SB) Security Tips & Talk Blog [UPD-08-03]

3.1.1 Windows 2000 client security
(WP) Windows 2000 Hardening Guide [UPD-08-02]

3.1.2 Windows XP security
(WP) Windows XP Security Guide [UPD-08-02]

3.1.3 Windows Vista security
(SB) Windows Vista Security Blog
(W3) Windows Vista Security TechCenter [UPD-08-04]
(WP) Windows Vista Security Guide [UPD-08-02]
(SB) Windows Genuine Advantage Blog
(W3) Genuine Microsoft Software 
(WP) IDC Study: The risks of obtaining and using pirated software

3.2      Server Operating System Security
(B) Windows Server Team Blog   

3.2.1 Windows 2000 Server security
(W3) Windows Server 2000 Security TechCenter [UPD-08-04]  
(WP) Securing Windows 2000 Server [UPD-08-02]

3.2.2 Windows Server 2003 security
(W3) Windows Server 2003 Security TechCenter [UPD-08-04]
(WP) Windows Server 2003 Security Guide [UPD-08-02]

3.2.3 Windows Server 2008 security
(W3) Win2008 Security & Protection TechCenter [UPD-08-04]
 (WP) Windows Server 2008 Security Guide [UPD-08-04]
(BK) Windows Server® 2008 Networking and Network Access Protection (NAP)
(BK) Windows Server® 2008 PKI and Certificate Security

3.3      Windows Mobile Security
(B) Windows Mobile Team Blog
(W3) Device Management & Data Security
(W3) Wireless and Mobile Security: Technical Resources [UPD-08-04]  

3.4      Server & Desktop Virtualization Security
(B) Windows Virtualization Team Blog [UPD-08-04]
(W3) Virtualization TechCenter [UPD-08-04]

3.5      Anti-Malware Solutions (for systems)
(SB) Microsoft Malware Protection Center Blog

3.5.1 Windows Defender
(W3) Windows Defender homepage [UPD-08-04]
(W3) Windows Defender TechCenter [UPD-08-04]

3.5.2 Forefront Client Security
(SB) Microsoft Forefront Client Security Team Blog
(W3) Forefront Client Security TechCenter [UPD-08-01]

3.5.2.1Forefront “Stirling”
(SB) Forefront Stirling Blog  [UPD-08-04]
(W3) Forefront "Stirling" TechCenter [UPD-08-04]

3.5.3 Windows Live OneCare
(W3) Windows Live OneCare homepage [UPD-08-04]
(SB) Windows Live OneCare Team Blog
(SB) Windows Live Safety Center Team Blog
(SB) Windows Live OneCare Family Safety Blog 

4.0  Application Security

4.1      Application & Platform Core Security
(SB) The Security Development Lifecycle Blog
(SB) Microsoft Application Threat Modeling Blog
(SB) ACE Team (Security, Performance, and Privacy) Blog
(SB) "%41%43%45%20%54%65%61%6d" Blog 

4.2     Client Applications Security

4.2.1      Office Security
(W3) Office Security TechCenter [UPD-08-04]
(B) Microsoft Office Team Blogs     

4.2.1.1Previous versions: Office 2000, Office XP
(WP) Office 2003 Security Whitepaper [UPD-08-04]

4.2.1.2Office 2007 Security
(WP) 2007 Microsoft Office Security Guide [UPD-08-02]

4.2.2      Internet Explorer Security
(W3) Internet Explorer TechCenter [UPD-08-04]
(B) Internet Explorer Team Blog

4.2.2.1Previous versions: IE 6.0
(WP) Understanding Security in IE 6 in Windows XP SP2 [UPD-08-04]

4.2.2.2IE 7.0 Security
(WP) IE 7 Desktop Security Guide [UPD-08-04]

4.2.2.3IE 8.0 Security
(W3) Internet Explorer 8 beta 1 homepage [UPD-08-04]

4.2.3      Instant Messaging Security
(WP) Security Considerations for Instant Messaging in the Workplace [UPD-08-04]

4.2.3.1Windows Live Messenger Security
(B) Windows Live Messenger Team Blog

4.2.3.2Office Communicator 2007 Security
(B) Microsoft Office Communicator Team Blog

4.3     Server Applications Security                      

4.3.1      Exchange Security
(W3) Exchange Server TechCenter [UPD-08-04]
(B) Microsoft Exchange Team Blog 

4.3.1.1Previous versions: Exchange 2000, Exchange 2003 Security
(W3) Exchange Server 2003 Security TechCenter [UPD-08-04]

4.3.1.2Exchange 2007 Security
(W3) Exchange Server 2007 Security TechCenter [UPD-08-04]

4.3.2      SQL Security
(W3) SQL Server TechCenter [UPD-08-04]
(W3) SQL Server Security TechCenter [UPD-08-04]
(B) Microsoft SQL Server Support Blog         

4.3.2.1Previous versions: SQL 2000 Security
(W3) Checklist: Securing SQL Server 2000 [UPD-08-04]

4.3.2.2SQL 2005 Security
(W3) SQL Server 2005 Security TechCenter [UPD-08-04]

4.3.2.3SQL 2008 Security
(W3) SQL Server 2008 Security homepage [UPD-08-04]
(WP) SQL Server 2008 Security overview for DB administrators [UPD-08-04]

4.3.3      IIS Security
(B) IIS.net Blogs

4.3.3.1Previous versions: IIS 5.0 Security
(W3) IIS Security Guidance [UPD-08-04]

4.3.3.2IIS 6.0 Security
(W3) Security in IIS 6.0 [UPD-08-04]
(W3) Securing Web Sites and Applications [UPD-08-04]

4.3.3.3IIS 7.0 Security
(W3) IIS 7.0: Configure Web Server Security [UPD-08-04]

4.3.4      Sharepoint Security
(B) Microsoft Office SharePoint Server Team Blog
(W3) MOSS TechCenter [UPD-08-04]

4.3.4.1Microsoft Office Sharepoint Server (MOSS) 2007
(W3) MOSS Security TechCenter [UPD-08-04]

4.3.5      Unified Communications Solutions
(W3) Unified Communications homepage [UPD-08-04]

4.3.5.1              Office Communications Server (OCS) 2007 Security
(B) Microsoft Office Communications Server Team Blog
(W3) OCS TechCenter [UPD-08-04]

4.3.6      Application Virtualization Security
(W3) Application Virtualization TechCenter [UPD-08-04]

4.4      Anti-Malware Solutions (for Server applications)
(SB) Microsoft Malware Protection Center Blog

4.4.1      Forefront Server Security
(SB) Microsoft Forefront Server Security Blog
(W3) Forefront Server Security TechCenter [UPD-08-04]

4.4.1.1Microsoft Antigen
(W3) Antigen TechCenter  [UPD-08-01]

4.4.1.2Forefront Security for Exchange (Exchange 2007)
(W3) Forefront Security for Exchange TechCenter [UPD-08-01]

4.4.1.3Forefront Security for Office Communications Server
(W3) Forefront Security for OCS TechCenter [UPD-08-04]

4.4.1.4Forefront Security for Sharepoint (Office SharePoint Server 2007 and Microsoft Windows SharePoint Services 3.0)
(W3) Forefront Security for Sharepoint TechCenter [UPD-08-01] 

4.4.1.5Forefront “Stirling”
(SB) Forefront Stirling Blog  [UPD-08-04]
(W3) Forefront "Stirling" TechCenter [UPD-08-04]

5.0  User Security

5.1     Identity & Access Solutions
(W3) Microsoft Identity & Access Solutions homepage [UPD-08-04] 

5.1.1      Directory Services Security
(W3) Active Directory Domain Services (AD DS) in Win2008 TechCenter [UPD-08-04]
(W3) Active Directory Lightweight Directory Services (AD LDS) in Win2008 TechCenter [UPD-08-04]
(W3) Group Policy TechCenter [UPD-08-04]
(B) Ask the Directory Services Team blog [UPD-08-04]
(B) Tim Springston’s Active Directory blog [UPD-08-03]

5.1.2      Identity Lifecycle Manager (ILM) 2007
(W3) ILM 2007 TechCenter [UPD-08-04]

5.1.3      Active Directory Federation Services (AD FS)
(W3) Active Directory Federation Services (AD FS) in Win2008 TechCenter [UPD-08-04]

5.1.4      Certificate Services and SmartCard
(W3) Active Directory Certification Services (AD CS) in Win2008 TechCenter [UPD-08-04]
(SB) Windows PKI blog
(SB) SmartCard Infrastructure Blog
(BK) Windows Server® 2008 PKI and Certificate Security

6.0  Data Security                 

6.1      Data Encryption solutions
(WP) The Data Encryption toolkit for Mobile PCs [UPD-08-04]

6.1.1      Encrypting File System (EFS)
(W3) The Encrypted File System [UPD-08-04]

6.1.1.1Previous versions: EFS in Win2000, WinXP, Win2003
(W3) EFS in WinXP and Win2003 [UPD-08-04] 

6.1.1.2EFS in Windows Vista & Windows Server 2008  
(W3) EFS in Win2008 [UPD-08-04] 

6.1.2      BitLocker
(W3) BitLocker TechCenter [UPD-08-04]     

6.2     Policy Enforcement solutions

6.2.1      Rights Management Server (RMS)
(SB) RMS: Protecting Your Assets.

6.2.1.1RMS in Windows Server 2003
(W3) RMS in Win2003 TechCenter [UPD-08-04] 

6.2.1.2RMS in Windows Server 2008
(W3) RMS in Win2008 TechCenter [UPD-08-04]

6.3      Privacy Enhancing Technologies (PET)      
(SB) The Data Privacy Imperative

6.3.1   Privacy Enhancements in Windows XP SP2
(WP) Controlling Internet Communications in WinXP SP2 [UPD-08-04]

6.3.2   Privacy Enhancements in Windows Vista
(WP) Windows Vista Privacy Statement [UPD-08-04]
(WP) Controlling Internet Communications in Windows Vista [UPD-08-04]

7.0  Security Foundations – Technology

7.1     Security Update & Compliance Management solutions   
(SB) Microsoft Security Response Center
(SB) Security Vulnerability Research & Defense
(W3) Update Management TechCenter [UPD-08-04]
(SB) Solution Accelerators - Security & Compliance

7.1.1      Windows Update, Microsoft Update & Automatic Update Agent
(B) Microsoft Update Team Blog

7.1.2      WSUS
(B) WSUS Product Team Blog
(B) WSUS Support Team Blog [UPD-08-04]
(W3) WSUS TechCenter [UPD-08-04]

7.1.3      SMS & System Center Configuration Manager
(B) SMS & MOM Product Team Blog [UPD-08-04]

7.1.3.1              SMS 2003
(W3) System Management Server 2003 TechCenter [UPD-08-04]

7.1.3.2              System Center Configuration Manager 2007
(W3) System Center Configuration Manager 2007 TechCenter [UPD-08-04]

7.1.4      Microsoft Baseline Security Analyzer
(W3) MBSA homepage [UPD-08-04]
(W3) MBSA 2.1 homepage [UPD-08-04]

7.2     Security Monitoring & Auditing Solutions 

7.2.1   System Center Operations Manager 2007
(B) Operations Manager Product Team Blog
(W3) System Center Operations Manager TechCenter [UPD-08-04]

7.3     Systems Management Solutions    

7.3.1      System Center
(W3) System Center homepage [UPD-08-04]
(B) Nexus SC: The System Center Team Blog [UPD-08-04]
(W3) System Center TechCenter [UPD-08-04]

7.4     Hardware & Physical Security

7.4.1   Physical Security
(WP) Physical Security at Microsoft [UPD-08-04]

7.4.2   Trusted Platform Module (TPM)
See Bitlocker topic.

8.0  Security Foundation – Processes
(B) MOF and Service Management at Microsoft                 

8.1     Organizational Security & Policies

8.2     Operational Security & Procedures