Read up on the latest ideas and technologies from companies that sell hardware, software and services. Realizing the Value of Unified Communications
Email Archiving Implementation: Five Costly Mistakes to Avoid
Cutting printer costs
Agile in the Enterprise
Mimosa™ NearPoint™ for Microsoft® Exchange Server: Email Archiving 101
Still Sneaking In: The Threats Your Security Tools Aren't Telling You About
Enterprise Wireless WLAN Security
Mobile Solutions Deliver Improved Efficiency to Star Track Express
Zones provide focussed content from Computerworld and leading technology partners.Newsletter Subscription
Microsoft Wednesday outlined new security features it will add to Internet Explorer (IE) next month, including anti-malware protection to match tools similar to those offer by its rivals and a filter the company said would block most cross-site scripting attacks.
Internet Explorer 8 Beta 2, which Microsoft has slated for release sometime in August, will include two new security tools, said Austin Wilson, the director of Windows client product management.
One, dubbed "SmartScreen Filter" by Microsoft, adds malware blocking to the anti-phishing protection already embedded in IE7. The new feature, which will resemble the defenses already used by rival browsers Firefox 3.0 and Opera 9.5, will warn users when they're about to visit a site known or suspected of spreading malicious code and then block any download from that site.
Unlike Mozilla's Firefox, however, which retrieves a blacklist several times daily, then stores it locally to compare against URLs, IE8 will dynamically determine whether the site is potentially dangerous by pinging remote servers each time a user tries to reach a page.
Microsoft will use multiple third-party sources to compose the blacklists for both phishing and malware-hosting sites, said Wilson, and will also draw on data gathered by Windows Defender, the company's free anti-spyware tool. Wilson would not disclose the third-party information providers, however.
"We get the data feeds, and update our lists multiple times a day," he said. "And IE8 makes the call to the URL reputation service servers, and if it's a phishing or malware site, the browser navigates away from the page and displays a warning."
He denied that the process would have a noticeable impact on IE8's performance. "Our choice was to make sure that the user has the most recent data possible," he said. "We do an asynchronous call, so the page rendering takes place while the call is made to the reputation servers."
Also to debut next month in IE8 Beta 2 is an integrated filter that Microsoft said would prevent most cross-site scripting attacks. "Today, the end user can be doing all the right things, checking the URL to make sure it's legitimate, only going to trusted sites, but because of vulnerabilities on the Web server side, they can still be compromised," said Wilson, referring to cross-site scripting attacks, which are most commonly used by identity thieves and have been on the upswing.
"When IE8 sees a cross-site scripting attack, it stops that script from being reflected to the server, and stops the attack at the client," Wilson added.
IE8 will have the cross-site scripting filter enabled by default, and will not need to deal with pop-up warnings or other dialogs, added David Ross, a security software engineer at Microsoft. "When the filter discovers likely XSS in a cross-site request, it identifies and neuters the attack if it is replayed in the server's response," said Ross in a technical posting to the IE team's blog today.
Cross-site scripting is sometimes referred to by the abbreviation XSS.
Ross, however, acknowledged that IE8's cross-site scripting filter won't completely protect users. "The XSS [cross-site scripting] Filter defends against the most common XSS attacks but it is not, and will never be, an XSS panacea," Ross said.
John Pescatore, a Gartner research fellow and analyst, applauded Microsoft's plans. "It's good to see these kinds of things built into the browser," said Pescatore, adding that the two new features take different approaches against security problems on the Web.
The SmartScreen Filter, Pescatore argued, is the "more reactive part" of the IE8 security upgrade. "You really have to protect the browser user against himself," he said, and one way is to block users from straying into dangerous places.
The concept behind the cross-site scripting filter, however, and IE8's planned support for protocols designed to make inter-site communications more secure, is similar to the tools Microsoft and Hewlett-Packard Co. unveiled last week to help Web site developers and administrators secure their sites against SQL injection attacks. "You can't build everything into the browser," Pescatore said. "The browser has to be the thing that tries to protect the user, but it can't make up for all the Web security vulnerabilities."
IE8 Beta 2 will ship next month, Microsoft's Wilson confirmed today, although he declined to set a more specific date.
Beta 1, which launched four months ago, can be downloaded from Microsoft's Web site.
Computerworld Member Login
Prioritizing Services with IT Service Management (ITSM)
Computerworld Live Webinar
Wednesday 20th, August 2008
11:00am EST (Sydney, Australia)
To be repeated on:
Thursday 4th, September 2008
11:00am EST (Sydney Australia)
Sign up and receive a free copy of The Forrester WaveTM Service Desk Management Tools, Q2 2008 at the conclusion of the Webinar.
Attend and discover:
- How to deliver value to your business through ITSM
- Best practice ITSM implementation
- Why emphasis is changing from optimizing IT management processes to better servicing customers and demonstrating real dollar value
- If service-oriented ITSM is best for your business
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Tumbleweed appoints O2 Networks to its Australian Channel Partner Program 2008-08-29 12:31:00+10
HP ProCurve Brings Big Business Gigabit Switching Features to Small Businesses 2008-08-29 12:00:00+10
Nortel and LG Electronics are First in World to Demonstrate Mobile LTE Handover 2008-08-29 11:30:00+10
GlobalConnect Provides Treatment for Healthcare Provider’s Contact Support Requirements 2008-08-29 09:59:00+10
Sybase and Logica Partner To Mobilise The Supply Chain 2008-08-29 09:47:00+10
Best Practice IP Storage: Discover the Cost Savings
Storage over IP, or the replication of block-level data over leased virtual private networks, allows users to select the type of wide-area service that best meets their budget and application requirements. Discover the best questions to ask IP SAN vendors, the cost savings that can be created by using IP storage methods and the future of iSCSI.
