News

Microsoft Talks Windows 2000 Security at RSA

Today at the RSA Conference 2000 in San Jose, Microsoft Corp. announced that it has joined Cisco Systems Inc.'s (www.cisco.com) Security Associate Program, and that ValiCert Inc.’s (www.valicert.com) Global VA Service technology will be embedded into Windows 2000.

The objective of the Cisco Security Associate Program is to ease deployment for customers of third-party security products by fully testing and verifying them for complete interoperation with Cisco Secure offerings.

"We designed Windows 2000 with security as a key development goal, and we believe that it will be the most secure operating system that Microsoft has ever shipped," said Brian Valentine, senior vice president of the Windows Division at Microsoft, in a statement.

Microsoft and Cisco have previously partnered to advance network security, jointly developing the IP Security Protocol (IPSec) implementation for Windows 2000 and Cisco IOS Software, to ensure full standards-based interoperability. In addition, Microsoft and Cisco have worked closely to integrate support for the Simple Certificate Enrollment Protocol (SCEP) into Microsoft's Certificate Server, making it interoperable with Cisco's certificate-enabled security solutions. Using SCEP, organizations can take advantage of advanced certificate services optionally available in the Windows 2000 Resource Kit to enroll routers using Cisco IOS Software.

At the conference, Microsoft also announced that Windows 2000 will ship with ValiCert's Global VA Service root keys embedded into the new operating system. Already included with Internet Explorer 5.01, ValiCert's root keys let any validation-aware application using the Microsoft Certificate Store or built using the Microsoft Crypto Crypto API automatically trust all the certificate validation responses it gets back from the ValiCert Global VA Service by using the keys to verify the ValiCert digital signature on each response. This makes Internet Explorer, Outlook, Outlook Express and other Windows applications more secure for e-business transactions. The ValiCert root keys are the only ones embedded in Windows 2000 that do not belong to a certificate issuing authority, giving certificate validation equal status as a trusted third-party security service.

Microsoft’s Valentine says his company embedded this technology into Windows 2000 because certificate validation is a critical requirement to ensure trust in e-business transactions. Thomas Sullivan

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Microsoft Starts Countdown to Dynamics GP End-of-Support

    Dynamics GP, Microsoft's venerable enterprise resource planning (ERP) solution for midsized businesses, is set to lose support in four years.

  • Image of a futuristic maze

    The 2024 Microsoft Product Roadmap

    Everything Microsoft partners and IT pros need to know about major Microsoft product milestones this year.

  • Windows Recall Preview Starts Rolling Out with Windows 11 24H2

    Microsoft on Tuesday began rolling out Windows 11 version 24H2, describing the update as a "full OS swap that contains new foundational elements required to deliver transformational Al experiences and exceptional performance."

  • An image of planes flying around a globe

    2024 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.