Security researchers look beyond Vista

The improved security in Microsoft's newest software products may leave some security researchers looking elsewhere for work. That was the message that some security professionals took away from BlueHat, an event last week on Microsoft's campus that allows security researchers to mingle with Microsoft developers.

"One of the messages we got was to look in the future for [our products] to not be so successful," said Pedram Amini, manager of security research at 3Com's Tipping Point division. That's because Microsoft is applying a lot of the technologies used by security researchers in-house, making the third-party techniques not as effective, he said.

For example, he said that Microsoft Office has been susceptible to fault by fuzzing, an automated technique for finding software faults when access to the code isn't available. But Microsoft has recently put more effort into using fuzzing itself, so now third-party fuzzing technologies are unlikely to be as necessary for Office 2007.

View: The full story
News source: InfoWorld

Report a problem with article
Previous Story

Signing Off on IBM Lotus Forms 3.0

Next Story

Nvidia to launch IGP chipsets for AMD in November

7 Comments

I doubt their jobs are any jeopardy in at least the near future. It's hard to put much faith in Microsoft's predictions. Wasn't it Bill Gates that said, “Two years from now, spam will be solved,” over three years ago? And if memory serves correctly, he also predicted at a press conference in the mid 90's that the Internet was a passing fad and unimportant.

Personally, I think that as closed-source core software evolves and becomes more complex, we are going to need more protection from third-party security researchers. The more eyeballs the better.

lbmouse said,
I doubt their jobs are any jeopardy in at least the near future. It's hard to put much faith in Microsoft's predictions. Wasn't it Bill Gates that said, “Two years from now, spam will be solved,” over three years ago? And if memory serves correctly, he also predicted at a press conference in the mid 90's that the Internet was a passing fad and unimportant.

Personally, I think that as closed-source core software evolves and becomes more complex, we are going to need more protection from third-party security researchers. The more eyeballs the better.

Microsoft had a spam solution, but the "e-mail community" didn't want it. mostly because it wa smade by microsoft.

besides Spam filters in new mail apps have pretty much taken care of spam to a large degree

HawkMan said,
Microsoft had a spam solution, but the "e-mail community" didn't want it. mostly because it wa smade by microsoft.

That's the "charge for every email sent" idea, or something different?

(lbmouse said @ #1.1)
Wasn't it Bill Gates that said, �Two years from now, spam will be solved,� over three years ago? And if memory serves correctly, he also predicted at a press conference in the mid 90's that the Internet was a passing fad and unimportant.

Wasn't it Bill Gates that said he'd be a millionare by the time he was 30? Wasn't it Bill Gates who was a BILLIONAIRE by the time he was 31?

:)

"Computer Security is People Problem" according to reputable sources. Yeah, you can always find flaws in software but as long as Sue in Accounting is indiscriminately opening those unknown emails having a more secure operating system won't mitigate the risk away from incompetence of an employee.

Commenting is disabled on this article.