Welcome to the Microsoft Security Newsletter - a
monthly newsletter for IT professionals and developers
bringing security news, guidance, updates, and community
resources direct to your inbox. If you have suggestions
or comments about the Microsoft Security Newsletter,
please
send us your feedback. To view an online version of
this newsletter, please click
here.
Viewpoint
|
|
By Mike Schutz, Group Product Manager, Security
and Access Products, Microsoft Corporation
For the past two years, there has been much hype
around the term "network access control". Read
this article and learn how Microsoft is working
with industry leaders across networking and
security as well as collaborating with Cisco on
interoperable architecture for Microsoft Network
Access Protection (NAP) and Cisco Network
Admission Control (NAC).
|
Top Stories
|
|
Cisco Systems Inc. and Microsoft Corp. are
delivering on their previously stated commitment
to provide customers and partners with clear
guidance on how Cisco NAC and Microsoft NAP will
interoperate. A
technical white paper released by the two
companies describes the architecture and
provides details on how to integrate the
embedded security capabilities of the Cisco
network infrastructure with those of Windows
Vista and the future version of Microsoft
Windows Server, code-named "Longhorn."
|
|
|
BrowserShield, a research project from Microsoft
Research’s Redmond lab, offers significant
advances in collaring the malevolent forces that
haunt the World Wide Web. Work on BrowserShield
began in the spring of 2005, and the current
project tackles the challenge of cleansing the
dynamic content of a Web page (such as embedded
JavaScript code) through script rewriting and
vulnerability-driven filtering. Learn why the
cliché “the best offense is a good defense”
rings true with BrowserShield.
|
|
|
Microsoft Forefront Client Security provides
unified virus and spyware protection for
business desktops, laptops, and server operating
systems that is easier to manage and control.
Through simplified administration and
integration with existing infrastructure,
Forefront Client Security helps you protect your
business with greater confidence and efficiency.
Learn more about the product, watch the
video demo, and sign up for the
public beta.
|
Security Guidance
|
|
By Nathan Bigman, User Education Lead, ISA
Server, Microsoft Corporation
Microsoft Internet Security and Acceleration
(ISA) Server 2006 and ISA Server 2004 provide
virtual private network (VPN) security
functionality for roaming clients. Learn how, as
part of this functionality, you can establish
thorough control over newly connected clients,
placing them in quarantine until they meet
corporate connectivity standards.
|
|
|
Read this white paper for a detailed description
of the components of the NAP architecture, how
it works, and how it allows third-party software
vendors and system integrators to create
complete solutions for system health-validated
network access. For a webcast version of this
white paper,
click here.
|
|
|
This white paper provides a detailed description of how Internet Protocol
Security (IPsec) enforcement in the Network Access Protection platform works to
provide system health validation and enforcement for IPsec-secured
communication.
|
|
|
Read this white paper for a description of how to configure NAP health
requirements and enforcement behavior using the Network Policy Server (NPS) in
Windows Server "Longhorn."
|
|
|
Follow the instructions in this white paper to demonstrate IPsec enforcement in
a test lab consisting of four computers.
|
|
|
Follow the instructions in this white paper to
demonstrate VPN enforcement in a test lab
consisting of four computers.
|
|
|
Follow the instructions in this white paper to demonstrate Dynamic Host
Configuration Protocol (DHCP) enforcement in a test lab consisting of three
computers.
|
|
|
Check out this blog and get the latest NAP news directly from the NAP
engineering team at Microsoft.
|
This Month's Security Bulletins
Critical:
Important:
Moderate:
MVP Update
|
|
|
|
Rodrigo Immaginario has been working in the field of computer science, and on
infrastructure projects in particular, since 1994. In recent years, he has
specialized in security solutions for the Microsoft environment and has worked
on security-related projects with clients including the Commission of the
Brazilian Army in Washington. Rodrigo possesses several certifications including
MCSE:Security, MCSA:Security, MCSE (NT, W2K, W2K3), MCSA (W2K, W2K3), and MCT.
He is currently the Manager of Technology for the Universidade de Vila Velha
(UVV), where he recently coordinated a postgraduate course on .NET.
|
|
|
By Rodrigo Immaginario, Security MVP and Chief
Information Officer, Universidade de Vila Velha
In today's environment, in which remote access,
wireless networking, and the integration of
several branches and distributed systems is a
reality in most companies, it is important to
know who your users are and what devices they
are using to access your network. Learn about
one way to address this problem using Server and
Domain Isolation based on Microsoft Windows
Internet Protocol security (IPsec) and Group
Policy.
|
Partners with Expertise in Security Solutions
|
|
ManageSoft is a leading, privately-held provider of intelligent solutions that
help enterprises deploy, secure, and manage their client software and computing
infrastructures. ManageSoft's Security solution supports Microsoft NAP by
helping specify remediation steps and automate corrective actions to issue
compliant health certificate for network endpoints.
|
|
|
Together, Microsoft and its partners will develop a wide array of applications
and end-to-end solutions to better serve customers. Find out more about the
industry leaders who have announced their support for Network Access Protection,
including vendors in areas such as client security, patch management,
networking, and system integration. For information on how to become a NAP
partner, send an inquiry to
asknap@microsoft.com with "partner program" in the subject line.
|
Microsoft Product Lifecycle Information
Security Events and Training
|
|
Security is a common and ever-present concern
for both users and developers. With MSDN
Security Virtual Labs, quickly evaluate or learn
how to secure applications, and optimize and
automate security through a series of guided,
hands-on labs which can be completed in 90
minutes or less. MSDN Virtual Labs do not
require any installation and are available to
you free and on demand.
|
|
|
By automating management, IT departments can
reduce operational costs while increasing
security. Use these resources to get in-depth
information about identity and access
management--the simplified, secure sharing of
digital identities across security boundaries.
Find out how to provide a secure environment for
managing user identities, authentication
methods, and access rights across an
organization's internal and external users.
|
Upcoming Security Webcasts
Microsoft On Demand Security Webcasts
|
• |
|
|
• |
Network Access Protection for Windows Server
Code-Named "Longhorn" and Windows Vista
Viruses, worms, and malicious software are
costly disruptions to today’s business
processes. Customers seek a flexible solution
that allows them to enforce policies across
varied connection scenarios, using the network
infrastructure already in place. Listen to this
webcast for an overview of the Network Access
Protection framework of technologies and learn
how NAP is a solution set that emphasizes
policy-based network access.
|
|
• |
|
For IT Professionals: TechNet Webcasts
For Developers: MSDN Webcasts
|
