…but it wants to partner with them at the same time, because it wants third-party products to work well with Microsoft products.
"The fact that we now offer security products does not change our commitment to work collaboratively with all of our security partners," Griesi said. "It's also important to note that while we encourage members to engage, all feedback is voluntary and does not impact the extent of information that Microsoft provides to partners."
Just last week, Microsoft said it was going to play nice and would abide by self-imposed rules aimed at bolstering choice and competition. The voluntary principles will come into play after court requirements related to the US antitrust case against Microsoft expire next year.
The new Microsoft Security Response and Safety Summit is part of the Microsoft Security Response Alliance, an effort announced in June that aims to pull together various collaborative security initiatives at the company. It is also preparing to launch a response portal this week for its partners, Griesi said.
The software giant has been holding annual meetings with antivirus researchers since 1997. Initially, the confab was called Microsoft Macro Virus Initiative and later, the Microsoft Virus Initiative. On top of that, Microsoft has held twice-yearly get-togethers with Internet service providers since 2004, as part of its Global Infrastructure Alliance for Internet Safety. The Microsoft Security Response and Safety Summit brought together the antivirus and the ISP strands for the first time.
"We had separate events, but actually 80 percent of what we talked about was the same, so we decided to have one summit with different tracks," Griesi said. "We really wanted to give our various partners a chance to meet each other... The problems that ISPs and consumers face are the ones that the anti-malware makers are trying to address."
The merger was a good step, McAfee's Kuo said. "For us to attack some of these problems in a timely manner, we need to have close relationships with some of the ISPs," he said.
Security, response, safety
The Microsoft event had three tracks: security, response and safety. The first included sessions on secure software development at Microsoft; the Windows Security Centre (which tells users whether their security software is up to date); and Vista features such as User Account Control (which enables restrictions on different users’ rights to prevent malicious software from installing).
The response section included sessions on Vista networking security; trends in malicious software; and security in Internet Explorer 7, the next update to the Web browser. The safety track gave an overview of new safety features in Vista and the Windows Live family. These features included parental control and Vista extensibility, as well as Microsoft's phishing- and spam-fighting strategy.
One of the sessions was supposed to discuss WinFS, a new storage system for Vista. "We got in and sat down," Dang said. "The talk was over in five minutes, because Vista will be completely without WinFS." That same day Microsoft officially announced that WinFS will become part of the SQL Server database and will no longer be part of Windows.
Another session discussed how malicious software could leave traces on Vista PCs even after it is removed, McAfee's Kuo said. The trace is in the form of a so-called symbolic link, a technology introduced in Vista. These are designed to make it easier to locate items on a computer, and are somewhat similar to current shortcuts in Windows XP and aliases in Mac OS systems.
"Symbolic links can clutter up your machine with lots and lots of links that point nowhere" after the malicious software is removed, Kuo said. Protective tools will probably end up doing the clean-up, he said. It's a sign that on Vista systems, security software has more work to do than on earlier versions of the operating system.
The goal of Microsoft's alliance programme is to share information like this and to protect customers at large, Griesi said. Likewise, security companies such as Aluria say they want to work with Microsoft for the same reason. But some note that the software giant has a history of pulverising rivals. "Netscape is the renowned story," Dang said.
He did point out, though, that Microsoft hasn't always succeeded in imposing itself on the markets it enters. One example, he said, is Intuit, which is still a leader in accounting software, despite Microsoft's attempts to take it on.
"I commend Microsoft for listening to security vendors," Dang added. "Ultimately, we are all on the same side, which is the good guys versus the bad guys, and we're here to protect our customers. Microsoft playing in this is good for all parties — it keeps us on our toes and makes our products a lot better."
Kuo gives Microsoft the benefit of the doubt as to why it may be sharing fewer technical details than in previous years. It depends on the development lifecycle, he said. Vista is almost fully baked, so Microsoft doesn’t have anything new to share. Two years ago, attendees did get a significant amount of technical information, he added.
"At this point, there is really nothing for them to tell us that we don't know," Kuo said. "The question will be what happens next year. How much discussion happens then? That will be how we measure the significance of Microsoft entering the market and how that affects these relationships."
