Bekker's Blog

Blog archive

More Equal than Others

Microsoft used the Black Hat USA conference in Las Vegas this week to announce one of its periodic rebalancings of its security patch program. This time, the company announced a program to give trusted security software vendors advance information about vulnerabilities and the creation of an exploitability index to help IT assess the importance of a given vulnerability.

The partner program is called the Microsoft Active Protections Program (MAPP). It's supposed to allow security software providers to protect their customers more quickly.

"In the race between exploit and protection, Microsoft is committed to shifting the advantage to the security industry. The Microsoft Active Protection Program gives security software providers the information and resources they need to help better protect customers," Andrew Cushman, director of security response and outreach, said in a statement.

Amen. One of the big issues with security patches is that they serve as a starting gun for both security vendors and IT departments to patch their systems and for criminals who try to develop exploits on the acknowledged vulnerabilities. The more lead time the good guys have to help their customers, the better. This actually seems like something that Microsoft has probably already been doing with some select vendors, and this MAPP announcement is an invitation for more security vendors to get involved.

Posted by Scott Bekker on August 06, 2008


Featured

  • An image of planes flying around a globe

    2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • Microsoft Gives Orgs More Power to 'Tune' AI Agents

    At its Build 2025 conference this week, Microsoft unveiled significant advancements aimed at empowering enterprises to create more sophisticated AI agents.

  • Build 2025: Microsoft Charts Wider Path for AI Agents

    At Build 2025, Microsoft unveiled its strategic vision for the future of AI agents, emphasizing the development of autonomous systems capable of performing complex tasks across various applications.

  • Microsoft to Orgs: Ditch Your Passwords for Passkeys

    May marks the first-ever "World Passkey Day," the occasion of which Microsoft marked by leaning into its vision of a passwordless future.