New security features planned for the Longhorn version of Windows Server will include an automatic patch check and a file system that can fix itself, Microsoft said.
Security and reliability top Microsoft's list of promises to customers for the next major Windows Server release. On Thursday, the software maker shared some details on a few of the security and identity management features it has in store for the Windows Server, code-named Longhorn, which is due in 2007.
One of the new features is "secure-at-install", which is designed to help secure new installations of the operating system in specific server roles. When a new server is installed as a terminal server or file server, for example, the system will automatically find and apply security updates that apply to a particular role, Microsoft said.
In terms of reliability, Longhorn Server will have a "self-healing" file system, Microsoft said. The system can fix itself on the fly if there is a bad sector on a hard disk or even a processor that is showing a high rate of self-correcting errors, the software maker said.
Additionally, new transactional capabilities in the Windows file system and registry will let administrators more easily roll back any changes in case of an error, Microsoft said.
Another security feature planned for the Longhorn server release is Network Access Protection (NAP). This feature, originally planned for Windows Server 2003 R2, lets users perform a "health check" on PCs connecting to their network and block clients that don't meet rules — for example, for patches and virus signatures. Windows Server 2003 R2 is an interim Windows Server release that is due by year's end.
When it comes to management features, Microsoft on Thursday at its Professional Developers Conference in Los Angeles shared some of its plans for Active Directory, the company's software for tracking computer users and privileges.
At an unspecified time after it releases Longhorn Server, Microsoft plans to add a Security Token Service (STS), to Active Directory. This new service is to extend capabilities Microsoft plans to offer with Active Directory Federation Services (ADFS) which is set to ship with Windows Server 2003 R2.
ADFS lets users create trust relationships with other Active Directory users and enable authentication across corporate boundaries. STS will offer extended federation and privacy support, and integrated resource discovery and management, among other features, Microsoft said.
STS also will support InfoCard, a code name for a new Microsoft technology designed to provide secure storage for identity information that will be shared with online services such as Web stores.
For developers, Microsoft made available at the conference code of WinFX, its next-generation programming model. WinFX is designed to make it easy for developers to use security features in Windows. Developers no longer have to write the security code for dealing with identity and access in Windows themselves, according to Microsoft.
Talkback
So yet again the most secure Windows is something you, 1, have to wait for, 2, buy it, 3, bleed and sweat to get it implemented and working with all the promised and actually delivered features turned on to the fullest possible, 4, deal with anything (at your own cost) that we missed somehow.
So, what really changed in the last 10 years?
How many times has MS promised security? How many times have they delivered? This is just more FUD
from the masters.