Slashdot Mirror

← Back to Stories (view on slashdot.org)

How Microsoft Fights Off 100,000 Attacks A Month

Posted by ryuzaki0 on from the more-power-to-em dept.

El Lobo writes to mention a ComputerWorld article about Microsoft's battles with the Hackers of the world. The software giant fights off more than 100,000 attacks every month, protecting their data-heavy internal network from the paws of your average script kiddie. The article discusses Microsoft's 'defense in depth' strategy, and discusses just some of the layers in that barrier. From the article: "The first layer of protection for the Microsoft VPN is two-factor authentication. After an infamous incident in the fall of 2000, Microsoft installed a certificate-based Public Key Infrastructure and rolled out smart cards to all employees and contractors with remote access to the network and individuals with elevated access accounts such as domain administrators. Two-factor authentication requires that you have something physical, in this case the smart card, and also know something, in this case a password."

6 of 169 comments (clear)

  1. How about the best step . . . by OverlordQ · · Score: 4, Insightful

    Keeping your vital data physically disconnected from the outside Internet. I know it'll cut off people who work remotely, but if it's that important, it's worth it.

    --
    Your hair look like poop, Bob! - Wanker.
    1. Re:How about the best step . . . by bugnuts · · Score: 4, Insightful

      MS is big, and vital data are distributed in not-so-vital chunks throughout the organization and in different ways.

      Combined, it's all vital. But imho, saying "just cut the plug on the network" is not feasible and horribly short-sighted. MS has several web applications, update servers, search engines... what are you saying again? You propose they cut all that off, too? The damage is just as bad (if not worse) if their update servers get hacked instead of their personnel database.

      Network security covers a little more than just "vital data".

  2. I'm surprised... by pdbaby · · Score: 4, Insightful

    The article seems to say they only use Microsoft solutions to provide their security.
    I'm surprised they don't even have a little something from RSA. Is their solution that good (jokes aside!), or are they just suffering from major Not Invented Here syndrome?

    --
    Global symbol "$deity" requires explicit package name at line 2. - If only $scripture started "use strict;"
    1. Re:I'm surprised... by db32 · · Score: 4, Insightful

      Do you honestly believe they would admit to using anything other than MS? Do you remember the noise that was made about their website being protected by a company using linux servers to protect it from denial of service stuff? Do you remember the noise that was made when that linux based company signed up with their silly streaming media shit and was able to stream windows media more efficiently from linux boxes than what equivilent Windows boxes could do? (The worst part about this was that it could only stream windows media content to windows computers, and linux clients could't do anything with the streaming media from the linux server).

      Give MS some credit...their Marketing/PR departments aren't stupid enough to talk about everyone else products used to secure their network, but I have a hard time believing that their technical folks are stupid enough to restrict themselves to MS products. I mean I have heard people explain to me how MS Proxy is the best proxy ever, or how that other stupid MS firewall/proxy/server thing is the best for boundary protection...but I assume those people will never work in security at a decent sized company for long if at all. MS products have their uses as much as I dislike many of them...but if I ever had anyone working for me try to use an MS product for something like boundary protection I would slap them, repeatedly, in front of the whole IT department.

      --
      The only change I can believe in is what I find in my couch cushions.
  3. Re:ok, sure .. .this is somehow news because by GeckoX · · Score: 4, Insightful

    Where did it mention that MS is doing anything groundbreaking or revolutionary here?

    This is simply an article about how MS, arguably the most targeted entity out there, secures their business.

    Further, it appears to work very well for them, without sacrificing their employees ability to work.

    Really, what are you trying to say here? Should it require 3 people and 2 keys to log into your office over VPN every day to get some work done? Somehow I thing not, but that still leaves me wondering what is your point?

    --
    No Comment.
  4. Balance? by Rob+T+Firefly · · Score: 4, Insightful
    The software giant fights off more than 100,000 attacks every month
    I wonder how the number of attacks on other sites enabled by botnets of compromised Windows machines compares to this. Are they taking more or less than their software dishes out to the rest of the world?
    --
    Slashdot Burying Stories About Slashdot Media Owned