- Joined
- Jun 27, 2006
- Location
- Chicago, IL
Today, the MSRC released its Link Removed due to 404 Errort highlighting advancements of key Microsoft programs designed to help prevent and defend against online threats. The Microsoft programs featured in this paper include the following:
Some highlights from the report:
- Brad Arkin, Senior Director of Product Security and Privacy, Adobe Systems Incorporated
Later this week, many of us will be attending the Black Hat USA conference in Las Vegas. We’ll be at booth #203 in the exhibition hall– if you’re attending, stop by and say hello, and feel free to give your own testimonial at the video booth.
- Mike Reavey
Link Removed due to 404 Error
More...
- The Link Removed due to 404 Error (MAPP) and Link Removed due to 404 Error (MSVR) programs are intended to help protect customers through innovative industry collaboration and information sharing.
- The Exploitability Index provides additional information to help customers better prioritize the deployment of security updates.
- Our approach to Link Removed due to 404 Error describes how Microsoft – and other software vendors who have adopted a similar approach – wants to work with the finders of software vulnerabilities.
Some highlights from the report:
- MAPP now has 84 security companies participating worldwide, providing protections for hundreds of millions of customers every month.
- The recently revised Exploitability Index rating for security bulletins can help to significantly reduce the need to urgently deploy all security updates.
- Of the 605 Exploitability Index ratings issued from October 2008 to June 2011, only 5 have been revised. Four of those revisions have involved a reduction in the Exploitability Index rating.
- Since July 2010, MSVR has identified and disclosed 109 different software vulnerabilities affecting a total of 38 software vendors in a safe and coordinated manner.
- Software vendors have responded and coordinated on 97 percent of all vulnerabilities reported by MSVR.
- Microsoft’s creation of a Coordinated Vulnerability Disclosure (CVD) process for our employees last year, and publication of supporting documentation in April 2011, has been very well received by customers as evidenced by their testimonials.
- Reaction to the participation of Adobe Systems Inc. in the MAPP program has been very positive as evidenced by our MAPP testimonials:
- Brad Arkin, Senior Director of Product Security and Privacy, Adobe Systems Incorporated
Later this week, many of us will be attending the Black Hat USA conference in Las Vegas. We’ll be at booth #203 in the exhibition hall– if you’re attending, stop by and say hello, and feel free to give your own testimonial at the video booth.
- Mike Reavey
Link Removed due to 404 Error
More...