Microsoft Unveils New Tools to Fight Security Threats

Speaking yesterday at the Black Hat Security Conference in Las Vegas, Microsoft has now introduced a new group of security related programs that share advanced information with partners about upcoming security threats.

As many in the tech industry know, within hours, and sometimes minutes of monthly security patches being released, exploits are already booming for the security holes fixed by these updates. The Microsoft Active Protections Program (MAPP) will allow security software providers to provide protection to their customers quickly and effectively.

"The introduction of these new programs helps address evolving online threats and provides more practical guidance to assess and manage risk," said Andrew Cushman, director of security response and outreach at Microsoft. "In the race between exploit and protection, Microsoft is committed to shifting the advantage to the security industry. The Microsoft Active Protections Program gives security software providers the information and resources they need to help better protect customers."

Along with the MAPP, Microsoft also plans to roll out its new Exploitability Index in October of 2008. The Exploitability Index will allow providers to determine what exploit is more dangerous and allow them to prioritize the security releases to their customers.

"As security threats become more sophisticated, the global security community must combine its resources and work together to provide maximum security protections to worldwide Internet users," said George Stathakopoulos, general manager of security engineering and communications at Microsoft. "No one organization can counter online attacks alone. Therefore, we must use the combined strength of the industry, partners, customers and public organizations to build a more secure environment for everyone."

With the release of MAPP and Exploitability Index, hopefully we'll see more computers protected in a quicker and more efficient method against the new threats that are emerging each day.

Link: Guest editorial by George Stathakopoulos
Link: BlackHat Security Conference

Report a problem with article
Previous Story

Apple misses mark on DNS patch

Next Story

Meteor Games Announces New MMOG

6 Comments

Commenting is disabled on this article.

Will I need a MAP in order to figure out how to use MAPP? Or perhaps a MOP when I need to cleanup MAPP's messes?

Nothing against MAPP just yet, just figuring out some rhymes for when MAPP crashes or when they find a security hole in MAPP that renders it completely useless.

Along with the MAPP, Microsoft also plans to roll out its new Exploitability Index in October of 2008. The Exploitability Index will allow providers to determine what exploit is more dangerous and allow them to prioritize the security releases to their customers.

Isn't that what the current ratings (recommended, important, critical, etc, etc) are for?

I'm thinking they're going to make it more like how the anti-virus companies do it with an actual threat level (so, for example, for a bug that isn't exploitable, but quite bad, it could be a Critical update with an Exploiability Index of "Low" ).

To me it sounds like they'll use that to help the security providers, A/V, A/S etc, to work on what they should try and block until MS has a patch ready or until you have updated your systems with the patchs.

The whole idea here is to protect you until you patch Windows with whatever A/V and A/S software you have. So look for them to have definition updates ready for you before MS has their patches up on AU etc.