May 2009 - Posts

Securing Microsoft’s Cloud Infrastructure
A lot of people and companies are talking about “the Cloud” today. I guess that there are not too many companies that share the same track record of running online services as Microsoft. 1994 we launched MSN and since then we are in this business. Microsoft Read More...
Posted 28 May 09 09:44 by rhalbh | 3 Comments   
Filed under , , ,
How we do IT: Direct Access
You might know that we have something we call the Microsoft IT Showcase , where our internal IT shows how they use our technology to run our environment. Now, we just published a new article, which might be interesting for you to read called Using DirectAccess Read More...
Posted 25 May 09 10:02 by rhalbh | 1 Comments   
Filed under , , ,
Patch Management, a key step towards compliance!
As you might have read, I recently blogged about my infrastructure and the future of a platform towards a better management of compliance – honestly, I actually played with our latest technology . I wrote about Deploying PKI Time Sync on Virtual DCs Now, Read More...
Posted 22 May 09 02:18 by rhalbh | 0 Comments   
Filed under , , , , , , ,
Security Development Lifecycle Template – Your next step to “Secure Development”
You might remember it: January 15th, 2002 Bill Gates wrote the famous memo on Trustworthy Computing to all the employees at Microsoft. This was probably one of the biggest initiatives at Microsoft and radically changed the way we develop software (and Read More...
Posted 19 May 09 07:07 by rhalbh | 4 Comments   
Filed under , , ,
File Classification Infrastructure in Windows Server 2008 R2
We recently revealed the File Classification Infrastructure in Windows Server 2008 R2. This infrastructure can help you to classify files not only based on the location where it is stored but based on content as well. However, there is not too much value Read More...
Posted 14 May 09 04:56 by rhalbh | 0 Comments   
Filed under , ,
MS09-017: An out-of-the-ordinary PowerPoint security update
Our Security Research and Defense team blogged on the PowerPoint security update we published on Tuesday. There are a few things which were not “business as usual”: The update for the Windows version of PowerPoint went out before the Mac version. The Read More...
Posted 13 May 09 03:10 by rhalbh | 1 Comments   
Filed under ,
Download Pirated Copies – and you will be banned from the Internet
This is a very tough legislation: France just agreed on a new Internet Piracy Bill. If you violate piracy laws three times, you will be banned from the Internet up to an year: http://www.webpronews.com/topnews/2009/05/12/france-approves-internet-piracy-bill Read More...
Posted 13 May 09 01:31 by rhalbh | 2 Comments   
Filed under ,
Software Security and Analogies
Often we see analogies being used to compare software security with cares etc. During an internal discussion, Michael Howard posted a link to a pretty old blog post of his which I thought is worth reading: http://blogs.msdn.com/michael_howard/archive/2006/03/09/547575.aspx Read More...
Posted 12 May 09 08:44 by rhalbh | 1 Comments   
Filed under
Google Chrome and Silent Patching
This morning I opened one of the Swiss Sunday newspapers and Google Chrome made it to the front-page with a “best practice approach” for deploying security updates. In the article itself it was claimed that Chrome is one of the best browsers with regards Read More...
Posted 11 May 09 03:58 by rhalbh | 18 Comments   
Filed under , , , ,
DirectAccess and how it works
Republished with the broken link fixed (thank you to the person who told me via messenger). In my last blog post Direct Access - A Step by Step Guide I just linked to a paper showing how you can set it up. However, based on that I got questions on both Read More...
Posted 09 May 09 12:27 by rhalbh | 1 Comments   
DirectAccess – a Step by Step Guide
Direct Access is one of the coolest features I used since a quite while. I am part of our internal pilot since months and it is absolutely great: You connect to the Internet and you are immediately connected to the corporate network. No VPN, nothing. Read More...
Posted 08 May 09 10:08 by rhalbh | 4 Comments   
Filed under
If Apple bought Twitter
I just stumbled across this Roger Read More...
Posted 07 May 09 10:48 by rhalbh | 0 Comments   
Filed under
A Conversation About Threat Modeling by Michael Howard
Michael Howard, one of our gurus, when it comes to secure code development, wrote a dialogue on SDL and Threat Modeling called A Conversation About Threat Modeling – this is definitely a must read, even if you are not a developer Roger Read More...
Posted 04 May 09 09:10 by rhalbh | 1 Comments   
Filed under , ,
CDC and the Way They Communicate about the Swine Flu
This is impressive to me: I was looking at the website of the Centers for Disease Control and Prevention and the way they use the Internet and social media to communicate about the Swine Flu. They use all the latest media like Widgets, websites for mobile Read More...
Posted 01 May 09 08:41 by rhalbh | 0 Comments   
Filed under

Search

This Blog

Chat directly with me if you want. Go to my About page to find a web messenger!

Visit ourPhoto Gallery

Locations of visitors to this page

Rogers Security Blog at Blogged Add to Technorati Favorites

Syndication

Page view tracker