Partager via

Windows Vista Security Testing

  • Article

Hi, I’m Austin Wilson, Director of Product Management for Windows Vista security.   Our first focus for Windows Vista security is engineering the operating system for security.   Windows Vista is the first Windows client release to be developed end to end using the Security Development Lifecycle (SDL), detailed in this new book by Michael Howard and Steve Lipner . One important part of SDL is doing feature and threat model reviews, penetration testing , and code audits to find potential security issues before we ship.  We’ve had a significant focus on this throughout the product lifecycle using both Microsoft employees and external security researchers to do this testing.    We would like to thank these firms that have helped us do security testing of Windows Vista and acknowledge their assistance in helping us make Windows Vista more secure.  These firms are:

 

 

If you’re headed to the BlackHat Conference in Las Vegas next week, be sure to stop by and say hello.  We’ll have five different sessions related to Windows Vista security and we’ll have a booth as well.   Representatives and researchers from many of these security firms will also be attending BlackHat.  We’ll be giving away the latest Windows Vista July EDW DVDs at the booth.  We hope to see you there.

Comments

  • Anonymous
    July 28, 2006
    One again I was scanning the news when this article caught my eye. It discusses the complexity of trying

  • Anonymous
    July 28, 2006
    One again I was scanning the news when this article caught my eye. It discusses the complexity of trying

  • Anonymous
    July 29, 2006
    On many occasions I have mentioned that we enlisted the help of a number of third-party security professionals...

  • Anonymous
    July 29, 2006
    Ah, that's the reason why Fefe is in the US right now.

  • Anonymous
    August 02, 2006
    Microsoft are hosting an entire track giving technical insight and encouraging feedback at the Blackhat...

  • Anonymous
    August 03, 2006
    PingBack from http://www.matasano.com/log/404/thanks-microsoft/

  • Anonymous
    August 04, 2006
    Thanks for passing out the CD's. After Defcon I'm actually planning to try it out. How do we obtain product keys for installation?

  • Anonymous
    August 04, 2006
    The product key is printed on a sticker on the back of the envelope. Thanks for the comments and for trying Windows Vista.

    - Alex

  • Anonymous
    August 07, 2006
    What do you think of the recent demo at Black Hat 2006 where Joanna Rutkowska showed that it is possible to bypass security measures in Vista and allowing any unsigned device driver to be loaded? The demo was done with the Windows Vista Beta 2 kernel, x64 edition, that should prevent unsigned code from running. Rutkowska also explained how it is possible to use virtualization technology to make malicious code undetectable, in the same way a rootkit does.

  • Anonymous
    August 07, 2006
    See http://blogs.msdn.com/windowsvistasecurity/archive/2006/08/07/691441.aspx

  • Anonymous
    August 09, 2006
    The comment has been removed

  • Anonymous
    August 18, 2006
    Windows Vista のセキュリティテスト

  • Anonymous
    August 24, 2006
    I was just looking at Jeff Jones' security blog and noticed this post where he links to a new blog addressing...

  • Anonymous
    September 26, 2006
    PingBack from http://blogs.msdn.com/windowsvistasecurity/archive/2006/07/28/681833.aspx

  • Anonymous
    November 09, 2006
    The comment has been removed

  • Anonymous
    November 17, 2006
    On many occasions I have mentioned that we enlisted the help of a number of third-party security professionals

  • Anonymous
    November 23, 2006
    PingBack from http://radiob.wordpress.com/2006/11/24/ms-sql-server-sicherer-als-oracle/

  • Anonymous
    November 23, 2006
    PingBack from http://radiob.wordpress.com/2006/11/24/ms-sql-server-sicherer-als-oracle-2/

  • Anonymous
    January 29, 2007
    The comment has been removed

  • Anonymous
    March 25, 2007
    ITs Like ME [url=http://myurl.com.tw/jcos]casino bonus[/url]

  • Anonymous
    April 15, 2007
    i think some body is down loading my microsoft programs to his computer threw mine is this possible if so how do i stop it? is my vista register from my computer?

  • Anonymous
    May 22, 2007
    PingBack from http://blogs.zdnet.com/security/?p=13

  • Anonymous
    July 28, 2007
    Very good . You are doing a great job.

  • Anonymous
    September 09, 2007
    very good. you are doing job. thankful.

  • Anonymous
    September 09, 2007
    prefiero windows vista security testing,siempre.

  • Anonymous
    October 30, 2007
    PingBack from http://discount-perfume-hq.com/?p=1897

  • Anonymous
    October 31, 2007
    PingBack from http://discount-perfume-hq.com/?p=2797

  • Anonymous
    December 31, 2007
    PingBack from http://music.247blogging.info/?p=1788

  • Anonymous
    March 10, 2008
    The comment has been removed

  • Anonymous
    August 14, 2008
    i would like to know if my pc windows security my email is jyetchs1948@insight.com