Trustworthy Computing Progress
Published: July 20, 2005 | Updated: April 21, 2006
The creation of Trustworthy Computing in 2002 refocused Microsoft in a way that was different than the common perception of the company. Today, Trustworthy Computing is no longer an initiative—it's a Microsoft corporate tenet that guides nearly everything we do. We recognize that challenges still remain, and there is still much to be done. But Microsoft has achieved significant momentum, and our holistic approach highlights our ongoing commitment.
On This Page
Technology Innovation and Investment
Microsoft's core competency is technology, and since 2002 we've worked hard to develop trustworthy products and tools. Significant examples include Windows XP Service Pack 2, antispam and e-mail authentication tools such as the SmartScreen filter and the Sender ID framework, Windows Error Reporting technology, development tools such as PREfix and PREfast, and Information Rights Management Technology.
We're seeing results from our Security Development Lifecycle (SDL). In late 2005, we launched Microsoft SQL Server 2005, Microsoft Visual Studio 2005, and the Microsoft BizTalk Server 2006 beta, the first three products to complete the SDL process from their inception through release. Additionally, we've integrated the Privacy Process for Product Development into the Security Development Lifecycle, as of January 1. Further, security and privacy are both integrated into Checkpoint Express, our release management tool that every product must clear before release.
Other innovations from 2005 include anti-phishing technology, the Windows Defender AntiSpyware tool, and the Windows Malicious Software Removal Tool (MSRT). Microsoft also added to its trustworthy technology in 2005 through investment—for example, we completed our acquisition of Sybari, which will enable us to offer our enterprise customers the Antigen antivirus products. Also, we can now offer customers security management tools through Alacris and FrontBridge technologies.
Industry Leadership and Collaboration
Microsoft's commitment also includes taking an active leadership role in building the trustworthiness of the industry and the environment in which it operates. For example, Senior Vice President and General Counsel Brad Smith spoke in November 2005 before the U.S. Congressional Internet Caucus to advocate for federal privacy legislation that would not only better coordinate privacy protections within the United States, but also better align U.S. protections with those offered by countries around the world.
We're also continuing to use the legal system to address online safety threats. In 2005 we took a number of legal and enforcement actions, such as lawsuits and participation in investigations and arrests, to get spammers, phishers, and virus launchers off the Web for good.
Microsoft also continues to be active in industry organizations that work toward trustworthy computing goals, including TRUSTe, the Global Infrastructure Alliance for Internet Safety (GIAIS), and the Anti-Phishing Working Group.
Customer Guidance and Engagement
Microsoft has always believed that customers get the best use from our products when they have the knowledge needed to maximize performance. Since 2002, we've developed and implemented numerous tools and programs, and we've published extensive prescriptive guidance materials. For example, we offer education and training worldwide, both to consumers and to IT professionals and developers. In 2005, we provided direct security training to more than 750,000 technology professionals.
Microsoft undertook a number of education and guidance programs in 2005, including outreach work with the U.S. Federal Trade Commission (FTC) and the National Consumers League to promote awareness of phishing scams, supporting the FTC in its development of www.OnGuardOnline.gov, participating in an Internet safety campaign with the National Cyber Security Alliance, and supporting Americans for Technology Leadership (ATL) in launching its Take Back the Net tour.
We launched numerous online resources for consumers and an online security curriculum for developers and IT professionals called Learning Paths for Security. For our customers in enterprise, academia, and government, we have expanded our roster of Microsoft Security Advisors. Microsoft now has advisors in 24 countries and regions around the world, and we plan to hire more.
Maintaining Momentum
Microsoft has no illusion that achieving Trustworthy Computing will be an easy job or that we can reduce our efforts. There is still much to do, and our work will continue no less energetically. Indeed, Trustworthy Computing has become so firmly woven into the Microsoft corporate culture that our efforts advance every day as we do our regular work.
Learn More
Technologies
Other Resources
