In a recent interview with Microsoft I had the chance to ask if the
true measure of the Windows Vista security is a combination between
deployment practices and code quality. But the fact of the
matter is that, as far as security is concerned, there will
always be something more Microsoft will have to do. With Vista, as with
any other piece of software, Microsoft delivers a standard for
security. A standard that once broken needs to be elevated. This is a
perpetual process.
“There’s always more we can do. Security will never be a destination,
instead it’s a journey. We remain confident that Windows Vista is the
most secure version of Windows to date, however it’s important to note
that no software is 100% secure. Our goal is to give PC users the
control and confidence they need so they can continue to get the most
out of their PCs and have a safer and more secure
computing experience,” said Stephen Toulouse, senior program manager for the Trustworthy Computing Group.
And in the end, the customer plays a vital role in security scenarios.
The current threat landscape is evolving in such a manner that social
engineering is taking the center stage as opposed to code quality. And
there is in fact little protection against user actions.
“I’m very proud of Windows Vista and I believe that the true measure of
Windows Vista’s security success is already being attained. We have
successfully released a product that is far more secure than any other
operating system that we have ever released. Security researchers and
security companies have had an unprecedented level of access and review
of the code. I’m excited that it’s out there now and people can put it
to the test,” Toulouse added.
