Microsoft to share patch details with vendors in advance
By Asavin Wattanajantra,
Microsoft plans to share technical information with selected security vendors before patches and software updates are released to the public.
The scheme is called the Microsoft Active Protections Program (MAPP) and is aimed at stopping what Microsoft calls an ‘undesirable cycle’. When a patch is released, the details of the vulnerability it fixes are also released. Quickly thereafter, exploit code based on those vulnerabilities is also released, leaving systems which are yet to be patched open to attack. It is hoped the programme will give security providers a head start against malware writers in protecting their systems.
Reports have said that early participants of the scheme include IBM, Juniper Networks and Tipping Point, but more are expected to join.
It is also reported that participating companies must have a large customer base and sell Windows-related products.
“As security threats become more sophisticated, the global security community must combine its resources and work together to provide maximum security protections to worldwide internet users,” said George Stathakopoulos, general manager of security engineering and communications at Microsoft.
“No one organisation can counter online attacks alone. Therefore, we must use the combined strength of the industry, partners, customers and public organisations to build a more secure environment for everyone,” he added.
Microsoft also announced a new ‘Exploitability Index’ which will provide its customers with guidance about the likelihood of hackers writing malware against vulnerabilities addressed by Microsoft security updates.
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Security Analysis & Insight
Do British police get cyber security?
Davey Winder listens to telephone conversations between the FBI and the Metropolitan Police, courtesy of Anonymous, and isn't impressed.
- Who to trust after the VeriSign hack?
- Striving to solve the security skills crisis
- Would you employ a hacker or malware writer?
- Q&A: Raj Samani, CTO McAfee
- Erase and rewind: the EU and privacy
- My email address is [CENSORED]
- Is there such a thing as a secure tablet?
- 2011: The year in news
- BYOD: Old or new, good or bad?
Latest Security Reviews
Check Point 2210 Appliance review
Rating: 
advertisement
Most popular
- Ubuntu vs. Windows 7 on the business desktop
- York researchers heat storage to speed up data
- OneNote hits Google?s Android
- O2 trials Olympic-scale remote working
- Who to trust after the VeriSign hack?
- Lenovo beats expectations again
- BlackBerry Bold 9790 review
- Will someone rid me of these troublesome Macs?
- Google to promise fairness after Motorola buy
- Welcome to the stay-at-home Olympics
Latest News Videos in Security
IT PRO Podcast: Are UK data protection laws flawed?
PlayWe bring in two experts to talk about the problems with UK data protection law and the way it is managed.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
