Roger Halbheer on Security
Interesting how the title turned out: Microsoft welcomes scrutiny of tech industry that has roiled its competition this year, says CEO Nadella. Easy for him to say. Kind of true as Microsoft was not in the focus of all the troubles this year but on the other hand, one could say that we learned our…
Artificial Intelligence and Machine Learning hold a lot of promises in security. They will help us address the problems around false positives and detecting anomalies. There is a lot of hope and a lot of promises by the vendors in that space. Microsoft invests in this technology as well and I would say we are…
Supply chain security is a very complex and difficult topic. The industry started to focus more and more on it and different approaches start to materialize. Mainly, security becomes part of the contract negotiation and part of the responsibilities of the supplier. In some cases, certifications like ISO 27001 are requested and the certificate must…
I was just reading an article called Does Facebook even need a CSO? – initially my reaction was (as most of yours I guess): “What a stupid question, for sure we need a CSO”. However, is this true? Do we really need a CSO? Are there other models which would work as well? What is…
When it comes to encryption and data we solved different problems. Since the invention of algorithms like DES, 3DESand/or AES symmetric encryption is something we understand and can solve. With RSA and Diffie-Helman key management and key exchange can be implemented with reasonable management overhead. This led to solid and trusted implementations of encryption at…
Wow, this is surprising and very good news: Microsoft + GitHub = Empowering Developers – a great post from our CEO, Satya Nadella
This is really cool: Microsoft Intune adds support for Knox Mobile Enrollment on company-owned Samsung devices
It once more proves that we deliver solutions for complex environments.
It is not new, that identity will become your new perimeter, your next control pane. Still I see a lot of companies struggle with the concept and with the feeling to have the identity in the Cloud. Often, I hear the statement that they “lose control” once the identity is (at least partly) managed in…
It is obviously not new that the security of hardware devices, especially the ones in the IoT space, is not the best. Typically, these devices were not designed with security in mind – much more with functionality and ease of use. With Spectre and Meltdown last year we have seen a new challenge showing up:…
I still remember the first one and now we reach version 23… It has a lot of insights into the malware and cybercrime landscape with really actionable recommendations. The Microsoft Security Intelligence Report can be accessed in different ways: Infographic – https://aka.ms/SIRv23Info Full Report – https://aka.ms/SIRv23 Webinar (April 10th at 10 am PDT) – https://aka.ms/SIRv23webcast…
The growing customer demand lets us expand our cloud services in new ways. Besides other exciting news, we just announced to open a Swiss region with two data centers in the Cantons Geneva and Zurich. Microsoft plans to offer enterprise cloud services for businesses, government, and NGOs from datacenter locations in the cantons of Geneva…
One debate is about the security of the Cloud and the Cloud provider. Once you decide to go there, the next question is about how to get it done. There are a few key and basic concepts to be followed. First and foremost you need to understand, which responsibilities you are moving with the workload…
Not only Russia, I would say…
We all see a lot of chatter on Artificial Intelligence and the impact on Cyber Defense and anomaly detection. I am not clear yet how far it really takes us. I have great hopes but I do not think that it is the silver bullet. However, there are interesting success to look into like that…
Most of you might know it in the meantime: I am back at Microsoft working as an Executive Security Advisor in the Western European region. One of the reasons why I re-joined was that I want to be able to have a real impact with one of the leading providers of technology, especially in the…
This month the Swiss Federal government organized a Swiss Digital Day to help to drive the discussion within Switzerland on the impact of digitalization on the different aspects of our life.Cybersecurity is all over the place, which is very good – something which would not have been the case a few years ago. Everybody knows…
I think it was around 2009 when Microsoft offered to leverage PhotoDNA to help law enforcement to fight child porn. PhotoDNA is a clever technology which helps to fingerprint any picture and keep the fingerprint stable even if you modify the picture (crop, change colors, brightness etc.). The idea is to build a database of…
It is in my opinion a controversial discussion: Do you allow the use of USB sticks in a corporate environment and if yes, how? Obviously, today there are a lot of other means to exchange information but the USB stick still seems to be important for users. To have a presentation for an event on…
The question about underground prices is often coming up – often only for curiosity. However, this pricelist is extremely important if we try to understand at least the motivation and the business case of criminals. Let’s look at a simple business case for a criminal. On the upside we have two bullets: Economical gain –…
