Back in February, slashdot ran a similar story about Microsoft's entry into the "antivirus" space (as you've noted today OneCare is more than just AV). I had crafted a response to that thread, but by the time it was posted the story was way off the main page and I doubt anyone even saw it.:)
Here's a reposting of the original thread (http://it.slashdot.org/comments.pl?sid=176820&thr eshold=1&commentsort=0&mode=thread&cid=14719345). It's just a straight copy/paste, and I'll go through this morning and do a follow-up to specific comments on this thread. I think this is a great discussion, and I'd like for it to continue.
Thanks - Luke Abrams
=====
Hi folks,
My name is Luke Abrams, and I'm the release manager for Windows OneCare as well as a frequent Slashdot reader. I was stoked that OneCare was slashdotted today, and read through (almost) all of the comments and replies. As always, no shortage of opinions here, and it's interesting to see what the reaction in this community has been to the move by Microsoft to release an anti-virus solution.
I wanted to post my personal thoughts on Windows OneCare, both as an employee of Microsoft/OneCare, and as a bona-fide geek (if you need any proof I'll show you my nmos/pmos tattoos sometime;).
1. "The problem...and the fix" - many of your comments were criticisms that Microsoft was selling solutions to the problems that it caused. It's no secret that all software has bugs and vulnerabilities - and like other software companies, we are committed to building software as secure as we can make it and finding and fixing bugs as quickly as possible. But let's not confuse code defects (exploitable or otherwise) with malware, and methods of protection. Let me dive into an analogy for a bit to flesh out the thought - think home security. When you build a house, you also want to make sure that it's secure. You install locks on doors, make sure windows only open from the inside, put your valuables in a safe, etc. But whether or not the builders left any exploitable holes in their design, you aren't really protected without a security system. Let's break this system down:
Good = secure design for the house
Better = above + updates to the design of the house as exploits are made known + good security practices (e.g. key management - don't leave your key in the mailbox!)
Best = above + active security system and a police force/infrastructure. Alarm system (real-time scanning). In the event that some unauthorized entity enters into your house, an alarm will go off and the individual is immobilized until you decide whether to allow them to enter or not. Police with "most wanted list" (signature detection) - they know who the bad guys are and stop them before they get to you. Detectives/agents that update the "most wanted list" (malware investigators/signature updates) - this is critical in the security arms race, because the bad guys don't stand still. If you have an AV solution with out-of-date signatures, you're not protected against any threat that has been released since your last update (unless your heuristics are really good) Beat cops with good instincts (heuristic detection) - they can detect suspicious activity and stop some of the bad guys even before they're on the most wanted list.
2. "MS is charging for fixes to their own OS!" - this is not the case. Microsoft will continue to service their products with QFEs, SPs, etc. for free through Microsoft Updates. It's in our best interest to help protect all our customers this way, not just subscribers to one particular service. OneCare (among other things) simply makes things easy for consumers specifically by helping assist with the updating process from Microsoft Update as part of its active protection. As for the active protection piece, MS has long told users they need antivirus protection to be safe - even Windows Security Center in XPSP2 tells you that you're unprotected if yo
My name is Luke Abrams, and I'm the release manager for Windows OneCare as well as a frequent Slashdot reader. I was stoked that OneCare was slashdotted today, and read through (almost) all of the comments and replies. As always, no shortage of opinions here, and it's interesting to see what the reaction in this community has been to the move by Microsoft to release an anti-virus solution.
I wanted to post my personal thoughts on Windows OneCare, both as an employee of Microsoft/OneCare, and as a bona-fide geek (if you need any proof I'll show you my nmos/pmos tattoos sometime;).
1. "The problem...and the fix" - many of your comments were criticisms that Microsoft was selling solutions to the problems that it caused. It's no secret that all software has bugs and vulnerabilities - and like other software companies, we are committed to building software as secure as we can make it and finding and fixing bugs as quickly as possible. But let's not confuse code defects (exploitable or otherwise) with malware, and methods of protection. Let me dive into an analogy for a bit to flesh out the thought - think home security. When you build a house, you also want to make sure that it's secure. You install locks on doors, make sure windows only open from the inside, put your valuables in a safe, etc. But whether or not the builders left any exploitable holes in their design, you aren't really protected without a security system. Let's break this system down:
Good = secure design for the house
Better = above + updates to the design of the house as exploits are made known + good security practices (e.g. key management - don't leave your key in the mailbox!)
Best = above + active security system and a police force/infrastructure.
Alarm system (real-time scanning). In the event that some unauthorized entity enters into your house, an alarm will go off and the individual is immobilized until you decide whether to allow them to enter or not.
Police with "most wanted list" (signature detection) - they know who the bad guys are and stop them before they get to you.
Detectives/agents that update the "most wanted list" (malware investigators/signature updates) - this is critical in the security arms race, because the bad guys don't stand still. If you have an AV solution with out-of-date signatures, you're not protected against any threat that has been released since your last update (unless your heuristics are really good)
Beat cops with good instincts (heuristic detection) - they can detect suspicious activity and stop some of the bad guys even before they're on the most wanted list.
2. "MS is charging for fixes to their own OS!" - this is not the case. Microsoft will continue to service their products with QFEs, SPs, etc. for free through Microsoft Updates. It's in our best interest to help protect all our customers this way, not just subscribers to one particular service. OneCare (among other things) simply makes things easy for consumers specifically by helping assist with the updating process from Microsoft Update as part of its active protection. As for the active protection piece, MS has long told users they need antivirus protection to be safe - even Windows Security Center in XPSP2 tells you that you're unprotected if you don't have an antivirus or firewall program installed and active.
3. "OneCare will take advantage with Internal APIs" - couldn't be farther from the truth. We take great pains to help ensure that we are competing fairly in the marketplace, and we plan to be a leader in PC care by making a great product that delights our customers. The OneCare service is built on top of the same public APIs available to all vendors.
Some of the questions I've read in here today:
Q: Does the Beta cost $20?
A: Nope - the Beta is free until we release. Use it, enjoy, send us feedback. Beta users that purchase during the special
Slashdot Mirror
Back in February, slashdot ran a similar story about Microsoft's entry into the "antivirus" space (as you've noted today OneCare is more than just AV). I had crafted a response to that thread, but by the time it was posted the story was way off the main page and I doubt anyone even saw it. :)
;).
Here's a reposting of the original thread (http://it.slashdot.org/comments.pl?sid=176820&thr eshold=1&commentsort=0&mode=thread&cid=14719345). It's just a straight copy/paste, and I'll go through this morning and do a follow-up to specific comments on this thread. I think this is a great discussion, and I'd like for it to continue.
Thanks - Luke Abrams
=====
Hi folks,
My name is Luke Abrams, and I'm the release manager for Windows OneCare as well as a frequent Slashdot reader. I was stoked that OneCare was slashdotted today, and read through (almost) all of the comments and replies. As always, no shortage of opinions here, and it's interesting to see what the reaction in this community has been to the move by Microsoft to release an anti-virus solution.
I wanted to post my personal thoughts on Windows OneCare, both as an employee of Microsoft/OneCare, and as a bona-fide geek (if you need any proof I'll show you my nmos/pmos tattoos sometime
1. "The problem...and the fix" - many of your comments were criticisms that Microsoft was selling solutions to the problems that it caused. It's no secret that all software has bugs and vulnerabilities - and like other software companies, we are committed to building software as secure as we can make it and finding and fixing bugs as quickly as possible. But let's not confuse code defects (exploitable or otherwise) with malware, and methods of protection. Let me dive into an analogy for a bit to flesh out the thought - think home security. When you build a house, you also want to make sure that it's secure. You install locks on doors, make sure windows only open from the inside, put your valuables in a safe, etc. But whether or not the builders left any exploitable holes in their design, you aren't really protected without a security system. Let's break this system down:
Good = secure design for the house
Better = above + updates to the design of the house as exploits are made known + good security practices (e.g. key management - don't leave your key in the mailbox!)
Best = above + active security system and a police force/infrastructure.
Alarm system (real-time scanning). In the event that some unauthorized entity enters into your house, an alarm will go off and the individual is immobilized until you decide whether to allow them to enter or not.
Police with "most wanted list" (signature detection) - they know who the bad guys are and stop them before they get to you.
Detectives/agents that update the "most wanted list" (malware investigators/signature updates) - this is critical in the security arms race, because the bad guys don't stand still. If you have an AV solution with out-of-date signatures, you're not protected against any threat that has been released since your last update (unless your heuristics are really good)
Beat cops with good instincts (heuristic detection) - they can detect suspicious activity and stop some of the bad guys even before they're on the most wanted list.
2. "MS is charging for fixes to their own OS!" - this is not the case. Microsoft will continue to service their products with QFEs, SPs, etc. for free through Microsoft Updates. It's in our best interest to help protect all our customers this way, not just subscribers to one particular service. OneCare (among other things) simply makes things easy for consumers specifically by helping assist with the updating process from Microsoft Update as part of its active protection. As for the active protection piece, MS has long told users they need antivirus protection to be safe - even Windows Security Center in XPSP2 tells you that you're unprotected if yo
My name is Luke Abrams, and I'm the release manager for Windows OneCare as well as a frequent Slashdot reader. I was stoked that OneCare was slashdotted today, and read through (almost) all of the comments and replies. As always, no shortage of opinions here, and it's interesting to see what the reaction in this community has been to the move by Microsoft to release an anti-virus solution.
I wanted to post my personal thoughts on Windows OneCare, both as an employee of Microsoft/OneCare, and as a bona-fide geek (if you need any proof I'll show you my nmos/pmos tattoos sometime
1. "The problem...and the fix" - many of your comments were criticisms that Microsoft was selling solutions to the problems that it caused. It's no secret that all software has bugs and vulnerabilities - and like other software companies, we are committed to building software as secure as we can make it and finding and fixing bugs as quickly as possible. But let's not confuse code defects (exploitable or otherwise) with malware, and methods of protection. Let me dive into an analogy for a bit to flesh out the thought - think home security. When you build a house, you also want to make sure that it's secure. You install locks on doors, make sure windows only open from the inside, put your valuables in a safe, etc. But whether or not the builders left any exploitable holes in their design, you aren't really protected without a security system. Let's break this system down:
Good = secure design for the house
Better = above + updates to the design of the house as exploits are made known + good security practices (e.g. key management - don't leave your key in the mailbox!)
Best = above + active security system and a police force/infrastructure.
2. "MS is charging for fixes to their own OS!" - this is not the case. Microsoft will continue to service their products with QFEs, SPs, etc. for free through Microsoft Updates. It's in our best interest to help protect all our customers this way, not just subscribers to one particular service. OneCare (among other things) simply makes things easy for consumers specifically by helping assist with the updating process from Microsoft Update as part of its active protection. As for the active protection piece, MS has long told users they need antivirus protection to be safe - even Windows Security Center in XPSP2 tells you that you're unprotected if you don't have an antivirus or firewall program installed and active.
3. "OneCare will take advantage with Internal APIs" - couldn't be farther from the truth. We take great pains to help ensure that we are competing fairly in the marketplace, and we plan to be a leader in PC care by making a great product that delights our customers. The OneCare service is built on top of the same public APIs available to all vendors.
Some of the questions I've read in here today:
Q: Does the Beta cost $20?
A: Nope - the Beta is free until we release. Use it, enjoy, send us feedback. Beta users that purchase during the special