Anti-malware company Symantec has accused Microsoft of withholding key information about its upcoming Vista OS, in an attempt to gain an unfair advantage in the security market. Symantec claimed this week that Microsoft is refusing to hand over the APIs for Windows Defender, its anti-spyware product which will be included in Vista. Without the APIs, Symantec claims that it isn't able to ensure that its own security products are compatible with Vista. Microsoft, though, insisted on Wednesday afternoon that the APIs are now available.
To view parent comment, click here.
To read all comments associated with this story, please click here.
Member since:2006-03-03
Oh, I not meant "security by obscurity" let me assure you 
I think there are rooms in Vista for everyone to be happy I think there would be a public API to use for security third-party supplier, so I don't understand the point to open-up some sort of hidden places Microsoft keeps in the shadow to avoid too much bloating
See, why not complaining that Microsoft hasn't release the APIs of Windows Update so that everyone could make a paying replacement, and also provides updates, gadgets, whatever... Who knows, trojan/worm/virus ? People can scream out-loud, some things have to be close sourced, otherwise everybody will start complaining again that Microsoft's Windows is unsecure, and thanks to McAfee/Symantec/Norton/... to secure thightly the whole thing
I hope that everyone had learned the lesson once SP2 was released and secured things so much... But obviously not, people are still paranoid !
Kochise
Member since:2005-07-06
I hope that everyone had learned the lesson once SP2 was released and secured things so much...
The latest MS exploit for which there's only a workaround works even if you have SP2 and all other updates.
http://www.microsoft.com/technet/security/advisory/925444.mspx
http://www.kb.cert.org/vuls/id/753044
http://www.heise.de/newsticker/meldung/78793
exploit:http://metasploit.com/svn/framework3/trunk/modules/exploits/windows...
remedie:http://support.microsoft.com/KB/240797
But obviously not, people are still paranoid !
Rightfully so!
Long live ActiveX (not).
Edited 2006-09-28 12:02
Member since:
2006-01-09
> I'm interrested to see how many trojan/worm/virus will
Perhaps
> appears and exploit these APIs once they are divulged
> by Microsoft, even under NDA with Symantec
> Microsoft better not to make them public, if they want
> to ensure some kind of security...
Ooooh goody - security by obscurity - all over again.
Security by obscurity is a disproven concept - even inside MS.
API obscurity is about artificial competitive advantage by a possibly malign monopolist. There does need to be a decision of legal principle as to when disclosure should occur - after all Vista has not gone on sale yet.