January 2010 – Technical Rollup Mail – Security
News
Privacy in the Cloud Computing Era: A Microsoft Perspective https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977514&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Based on the past decade of experience examining and addressing privacy challenges in the evolving online services realm, this new "Privacy in the Cloud Computing Era" paper discusses how Microsoft is approaching privacy as it relates to cloud computing and describes how the underlying privacy principles provide a solid foundation for addressing evolving privacy issues.
Introducing the Microsoft Security Podcast Index https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977515&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Quickly find security podcasts, stream or download .WMA or MP3 files to your favorite podcast software or mobile device, and subscribe to RSS feeds or automatically have podcasts downloaded to your computer.
Security Tip of the Month -- Claims-Based Apps: Claims-Based Authorization with WIF https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977516&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learn how to leverage Windows Identity Foundation (WIF) to significantly reduce the code required to implement rich application scenarios that involve federated and claims-based security.
Hyper-V Security Guide https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12975465&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
The Hyper-V Security Guide provides IT professionals with guidance, instructions, and recommendations to address key security concerns about server virtualization.
Microsoft Security Bulletin Summary for December, 2009
https://www.microsoft.com/technet/security/bulletin/ms09-dec.mspx
Microsoft Product Lifecycle Information
Find information about your particular products on the Microsoft Product Lifecycle https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355452&s1=68628015-2ccc-cbc7-31b9-0e76c3415474 Web site.
See a list of supported service packs https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355453&s1=68628015-2ccc-cbc7-31b9-0e76c3415474: Microsoft provides free software updates for security and non-security issues for all supported service packs
Security Bulletin Overview for December 2009
Microsoft Security Response Center (MSRC) Blog Post https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977523&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Windows Media Video (WMV) https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977524&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Windows Media Audio (WMA) https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977525&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
iPod Video (MP4) https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977526&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
High Quality WMV (2.5 Mbps) https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977528&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Zune Video (WMV) https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977529&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Documents
Microsoft Security Development Lifecycle (SDL) for Agile Development https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977517&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Per the Agile Manifesto, Agile projects should have short iterations, lasting from one month to a few weeks or less. SDL-Agile breaks the SDL into three categories of requirements: the requirements so important that they must be completed every iteration; the requirements that only have to be completed once per project no matter how long it runs; and the requirements that still need to be completed regularly but are not so important that they need to be completed every sprint. Read this overview of SDL methodologies for Agile development and then download the complete SDL-Agile guidance https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977455&s1=68628015-2ccc-cbc7-31b9-0e76c3415474, part of the SDL 4.1a Process Guidance.
2007 Microsoft Office Security Compliance Management Toolkit https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977518&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Get guidance, workbooks, and tools to help you plan, deploy, and monitor the security baselines of computers running the 2007 Microsoft Office Service Pack 1 (SP1) applications in your environment.
Security Policies and Settings in the 2007 Microsoft Office System https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977519&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Use this technical reference for the security settings and privacy options in the 2007 Microsoft Office system to determine what each setting does, what the default configurations are, which tool to use to configure a setting, and where to find the setting in the Office Customization Tool (OCT) or the Group Policy Object Editor.
Enabling Password Rules for Office 2010 https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977520&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learn about the new password rules feature in Microsoft Office 2010, and get guidance on how to enable and configure it. Want a high-level introduction to several of the new security features in Office 2010? Click here https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977456&s1=68628015-2ccc-cbc7-31b9-0e76c3415474.
Security Tools for Windows Applications https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977521&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
The Application Verifier (AppVerifier) is a collection of tests used during the application development and testing process to help developers identify potential application compatibility, stability, and security issues -- and find guidance for source-code level fixes.
Security Considerations for Windows Mobile Messaging in the Enterprise https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977522&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Gain an understanding of the Windows Mobile security model from both the device and server perspectives. This paper will help you know which security levels and features are available on front door and back door Windows Mobile powered devices and how Microsoft Exchange ActiveSync interacts with each of them. Read the Security Model for Windows Mobile 5.0 and Windows Mobile 6 https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977457&s1=68628015-2ccc-cbc7-31b9-0e76c3415474 for more detailed technical information on provisioning and managing Windows Mobile powered devices.
Downloads
Critical Infrastructure Protection Concepts and Continuum
Critical Infrastructure Protection Principles
Microsoft Forefront Protection 2010 for Exchange Server Documentation
Documentation about Microsoft Forefront Protection 2010 for Exchange Server
Introduction to Windows Firewall with Advanced Security
Learn how to manage Windows Firewall in Windows Vista, Windows 7, and Windows Server 2008 by using the Windows Firewall with Advanced Security Microsoft Management Control (MMC) snap-in, with Netsh commands, and with Group Policy.
Microsoft Volume Licensing Service Center (VLSC) User Guide
Download this user guide to see step-by-step instructions for the Microsoft Volume Licensing Service Center (VLSC).
Microsoft Forefront Codename "Stirling" Beta Privacy Statement
This document describes the privacy policy for Microsoft® Forefront Client Security.
Update for Windows Mail Junk E-mail Filter [December 2009] (KB905866)
Install this update for Windows Mail to revise the definition files that are used to detect e-mail messages that should be considered junk e-mail or that may contain phishing content.
Update for Windows Mail Junk E-mail Filter for x64-based Systems [December 2009] (KB905866)
Install this update for Windows Mail to revise the definition files that are used to detect e-mail messages that should be considered junk e-mail or that may contain phishing content.
Microsoft® Windows® Malicious Software Removal Tool (KB890830)
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.
Microsoft® Windows® Malicious Software Removal Tool (KB890830) x64
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.
December 2009 Security Release ISO Image
This DVD5 ISO image file contains the security updates for Windows released on Windows Update on December 8th, 2009.
Microsoft Forefront Protection 2010 for Exchange Server Documentation
Documentation about Microsoft Forefront Protection 2010 for Exchange Server
Microsoft Forefront Protection 2010 for Exchange Server Best Practices Analyzer
The FPE 2010 Best Practices Analyzer examines a local server running FPE 2010 and presents a list of warnings and errors for configurations that do not conform to recommended best practices.
Extended Security Update Inventory Tool
The Extended Security Update Inventory Tool is used to detect security bulletins not covered by MBSA including MS04-028, February 2005 bulletins, and future security bulletins that are exceptions to MBSA.
Microsoft® Forefront Threat Management Gateway (TMG) 2010 Tools & Software Development Kit
Software Development Kit (SDK), diagnostics, and other feature-related tools for Forefront TMG 2010.
Forefront Identity Manager (FIM) 2010 RC1 Update 2 release notes
FIM 2010 RC1, Update 2 Release Notes
Release notes for Update 2 of FIM 2010 RC1, KB977312
Security and Authentication in Microsoft Dynamics CRM: The Microsoft Dynamics CRM Security Model
This white paper, The Microsoft Dynamics CRM Security Model, serves as the core architectural component of a larger "nuts and bolts" article on Security and Authentication in Microsoft Dynamics CRM 4.0.
Security and Authentication in Microsoft Dynamics CRM: Field-level Security in Microsoft Dynamics CRM: Options and Constraints
While Microsoft Dynamics CRM does not provide for true field-level security, there are a number of options available for using supported custom logic to control of access to data at a more granular level than provided out of the box. This document discusses some of the key options and constraints available for implementing this type of solution.
Smart Card Lifecycle Management Datasheet
The Smart Card Lifecycle Management component of this offering will help you envision, plan and develop a Smart Card Lifecycle Management infrastructure designed specifically for your environment, using a consistent and standardized methodology based on the best practices collected from organizations worldwide.
Secure Web and Remote Access Enablement Datasheet
This offering provides you with secure remote access to the business applications and data that you need to be productive.
Security, Identity, and Access Management Datasheet
This offering provides an end-to-end security solution that allows you to move toward a dynamic IT infrastructure while ensuring better security integration, manageability, and efficiency.
Data Protection using Active Directory Rights Management Services Datasheet
Data Protection using Active Directory Rights Management Services (ADRMS) provides the processes, technology, and people expertise for enterprise organizations to build an integrated data protection system that helps augment an organization’s existing data protection strategy and policies.
Forefront Unified Access Gateway (UAG) 2010 Security Policy Template
Forefront UAG provides secure remote access by publishing corporate applications and resources for access by managed and unmanaged client endpoints, or by deployment of Forefront UAG DirectAccess. This download provides a security policy .xml template that can be used in conjunction with the Windows 2008 R2 Server Security Configuration Wizard (SCW) to harden Forefront UAG servers.
Forefront Unified Access Gateway (UAG) 2010 Evaluation Version
Forefront UAG provides secure remote access to corporate resources from a diverse range of managed and unmanaged client endpoints. The Forefront UAG Evaluation Version provided in this download is appropriate for IT professionals who want to deploy and evaluate Forefront UAG in a corporate environment.
Active Directory Federation Services 2.0 Release Candidate
Active Directory Federation Services 2.0 is a security token service (STS) for issuing and transforming claims, enabling federations, and managing user access.
Microsoft Federation Extensions for SharePoint 3.0 Release Candidate
Microsoft Federation Extensions for SharePoint 3.0 enables access using an open claims-based model based upon the Windows Identity Foundation.
Windows Identity Foundation SDK
Microsoft Forefront Online Protection for Exchange Service Level Agreement (SLA)
Forefront Online Protection for Exchange SLA
Microsoft’s Identity and Access Management Platform Whitepapers
Identity and Access Whitepapers
Research paper: The modern rogue - malware with a face
Research paper on Rogue antivirus software - originally presented at VB 2009
Secure Web and Remote Access Enablement Datasheet
This offering provides you with secure remote access to the business applications and data that you need to be productive.
Identity Lifecycle Management (ILM) Datasheet
This offering uses Microsoft Identity Integration Server (MIIS) 2003 and best practices to simplify digital identity management and maintain data integrity
Windows CardSpace 2.0 Beta 2
Windows CardSpace 2.0 is the end user component of Microsoft’s user access platform for developers and IT professionals that helps simplify access to applications and other systems with an open claims-based model.
Events/WebCasts
Microsoft SDL – Developer Starter Kit https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12486214&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Security Awareness Materials https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12486215&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Guidance, samples, and templates for creating a security-awareness program in your organization.
Learn Security On the Job https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12486216&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learning Paths for Security - Microsoft Training References and Resources https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12486217&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Security Webcast Calendar https://go.microsoft.com/fwlink/?LinkId=37910
Find security webcasts listed in an easy-to-use calendar format.
Upcoming Security Webcasts
https://www.microsoft.com/events/security/upcoming.mspx
Register for the following Webcasts on the link above
TechNet Webcast: Information About Microsoft January Security Bulletins (Level 200)
Wednesday, January 13, 2010 11:00 A.M.-12:30 P.M. Pacific Time
IT Manager Webcast: Information Security Through HBI Information Classification and Automation (Level 200)
Thursday, January 14, 2010 11:00 A.M.-12:00 P.M. Pacific Time
IT Manager Webcast: How Microsoft IT Strengthens Security with Data Loss Prevention (Level 200)
Thursday, January 14, 2010 1:00 P.M.-2:00 P.M. Pacific Time
TechNet Webcast: Protecting Exchange Server 2010 Using Hybrid Forefront Protection for Exchange (Level 300)
Friday, January 15, 2010 1:00 P.M.-2:30 P.M. Pacific Time
Momentum Webcast: Improve Security with a Layered Defense in Office 2010 (Level 100)
Thursday, January 21, 2010 11:00 A.M.-12:00 P.M. Pacific Time
TechNet Webcast: Improving the Wireless Network Infrastructure at Microsoft (Level 300)
Tuesday, January 26, 2010 9:30 A.M.-10:30 A.M. Pacific Time
On-Demand Security Webcasts
https://www.microsoft.com/events/security/ondemand.mspx
Visit TechNet Spotlight: www.microsoft.com/technetspotlight
Video on Demand, Video Downloads, PowerPoint Presentations, Audio and more
A.O.B
Additional Security Resources
Security Help and Support for IT Professionals https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977541&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
TechNet Troubleshooting and Support Page https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977542&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Microsoft Security Glossary https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977543&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
TechNet Security Center https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977544&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
MSDN Security Developer Center https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977545&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Sign-Up for the Microsoft Security Notification Service https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977546&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Security Bulletin Search Page https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977547&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Home Users: Protect Your PC https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977548&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
MCSE/MCSA: Security Certifications https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977549&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Subscribe to TechNet https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977550&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Register for TechNet Flash IT Newsletter https://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12977551&s1=68628015-2ccc-cbc7-31b9-0e76c3415474