Overview
The Government Security Program (GSP) is a crucial element of Microsoft's
efforts to address the unique security requirements of governments around the world.
The GSP provides national governments with information to help them evaluate the
security of Microsoft products. In 2001, Microsoft launched the Shared Source
Initiative, expanding its long-standing efforts to make Windows source code more
transparent to industry partners and customers. A year later, the company announced
its Trustworthy Computing Initiative, placing security at the core of all Windows
development efforts. The principles of these two critical directives are embodied
in the GSP, a program built upon the cornerstones of transparency and partnership.
Access
Through the GSP, Microsoft offers participating governments zero-cost, online smart-card
access to source code for the most current versions, beta releases, and service packs
of Windows (client and server), Windows Embedded CE, and Office. In addition, subject to such requirements as U.S. export approval,
qualified GSP participants may also obtain access to cryptographic code and
development tools. The GSP also provides transparency through disclosure of Microsoft
technical information. This engineering-level view of Windows architectural design as
it relates to security imparts greater insight regarding the platform's integrity and
enhances the government's ability to design and build more secure computing infrastructures.
Partnership
The GSP fosters partnership between the government and Microsoft based on mutual trust,
which is fortified through ongoing interaction, collaboration, and information exchange.
Representatives of participating government agencies may also opt to visit Microsoft
development facilities to review Windows source-code development, testing, and
deployment processes; discuss existing and potential projects with Microsoft security
experts; and interact with Microsoft staff. For the government participants, this
experience can provide valuable insights into the security of Microsoft's products. For Microsoft, the
visit offers an invaluable opportunity to receive feedback from agency representatives.
Visiting agencies are asked to outline specific projects and objectives prior to arrival,
so that Microsoft can best develop a customized, rewarding itinerary. Moreover,
the relationship of trust cultivated during the course of GSP participation serves
as a solid foundation for future technical collaboration in furtherance of designing,
developing, and implementing a more secure government computing environment.
Benefits
Access to Microsoft source code through the GSP benefits governments and associated organizations by:
Providing insight and a deeper understanding of Microsoft products.
Fostering a partnership on IT security matters with Microsoft through increased interaction.
Improving the feedback mechanisms that ultimately contribute to the development of better solutions and tools for the future.
Providing information which can help them to design and build more secure computing infrastructures.
Program Details
The GSP provides a mechanism for delivering source code for current versions, betas, and
service packs of Windows (client and server), Windows Embedded CE, and Office.
Use and Restrictions
Geographic Market Participation
Fulfillment
After the licensing agreement is signed by both parties, the participating
governments will gain access to the code through the Code Center Premium
SSL-secured Web site.
Code Center Premium offers search and view functionality to augment the efficiency and value of source access.
All source code updates are provided by Microsoft through Code Center Premium.
Additional Information
For more information on the Government Security Program, e-mail the GSP team.