Microsoft Windows Vista and Server 2008 Security
The development of Windows Vista has brought a multitude of new security features to Microsoft’s widely used operating system which far surpasses those of Windows XP. The goal was to provide a more secure, private, and reliable computing experience based on sound business practices (Trustworthy Computing), and Windows Vista is Microsoft’s most secure operating system to date. This presentation covers a wide range of security related technologies of Windows Vista and Server 2008. Topics that will be covered include:
- Fundamentally Secure Platform
- Security development lifecycle
- Threat modeling and code reviews
- Government and standard bodies certifications
- Treat & Vulnerability Mitigation
- IE Protected Mode; Anti-phishing
- Windows Defender
- Windows Service Hardening
- Identity and Access Control
- User Account Control
- Strong User Authentication
- Granular auditing for security events
- Information Recovery & Protection
- Windows BitLocker™ Drive Encryption
- EFS smartcards; RMS client
- Snapshot capability; Shadow copy
Ido Dubrawsky, Microsoft, Chief Security Advisor to the Communications sector - North America
Ido Dubrawsky is Microsoft’s Chief Security Advisor for the Communications Sector in North America. Ido has nearly 20 years of IT experience with the past 8 years focusing predominantly on information security. Prior to joining Microsoft, Ido was the acting National Practice Lead for Security Consulting with AT&T’s Callisma subsidiary, and he has held a position at Cisco Systems as a Network Security Architect working on the SAFE Architecture in the Security Technologies Group.
While working for Cisco System, Ido authored a variety of white papers focusing on network security, intrusion detection and Layer 2 security as well as co-authored the Cisco Press books, Cisco SAFE Implementation: Exam Certification Guide and Firewall Fundamentals. Ido was also the technical editor for Syngress Press’ book Building Enterprise DMZs 2nd Edition and co-authored or contributed to several other books by Syngress Press including Hack Proofing Your Network, Hack Proofing Sun Solaris 8, Cisco PIX Firewalls, Cisco Security Professional’s Guide: Secure Intrusion Detection, and Stealing the Network: How to Own the Box. Ido writes on numerous security topics in SysAdmin magazine as well as SecurityFocus and has presented at various conferences around the world, including Cisco’s Networkers, SANS, CSI, and RSA.
Ido has extensive experience with penetration testing, security architecture design and implementation, intrusion detection, incident response and forensics and policy development. He is a Certified Information Systems Security Professional (CISSP) and holds a Security+ certification as well as a CCNA, CCDA, and is a Sun Certified System Administrator. He holds a both a bachelor’s and a master’s degree in Aerospace Engineering from the University of Texas at Austin and is a member of various professional organizations including the Information Systems Security Association (ISSA), the Information Systems Audit and Control Association (ISACA), USENIX, SAGE and INFRAGARD.
|
