Story image

Microsoft unleashes broad range of security features & partnerships at RSA Conference

17 Apr 18

Microsoft has released a swathe of security announcements across its portfolio at the RSA Conference in San Francisco today; spanning microcontroller units, Microsoft 365 Commercial cloud, advanced threat protection tools; automated threat detection and remediation; and stronger partnerships.

“As last year’s devastating cyber attacks demonstrated, security threats are evolving and becoming even more serious,” comments Microsoft’ president Brad Smith.

“The tech sector’s innovations need to accelerate to outpace security threats. Today’s steps bring important security advances not just to the cloud, but to the billions of new devices that are working on the edge of the world’s computer networks.”

Here’s a glimpse of what Microsoft has to offer:

Microsoft Azure Sphere – improving IoT by ‘securing and powering the intelligent edge’

Microsoft previewed Azure Sphere, which will be the industry’s first platform for creating highly-secured and connected devices that rely on microcontroller units (MCUs). Approximately 9 billion new devices are powered by MCUs every year, and they are the most populous area of computing.

“We need to consider that when a device becomes compromised, it’s not just a problem for the owner, it can also become a problem for society,” comments Microsoft Azure Sphere partner managing director, Galen Hunt, in a blog.

“A device can disrupt and do damage on a larger scale. This is what happened with the 2016 Mirai botnet attack where roughly 100,000 compromised IoT devices were repurposed by hackers into a botnet that effectively knocked the U.S. East Coast off the Internet for a day.”

Azure Sphere will bring a new class of MCUs with more than five times the power of legacy MCUs, a custom-built OS for IoT security, and a turnkey cloud security service that guards every Azure Sphere device.

“Today, Azure Sphere is in private preview. We’re working closely with select device manufacturers to build future products powered by Azure Sphere. We expect the first wave of Azure Sphere devices to be on shelves by the end of 2018. Dev kits will be universally available in mid-2018.”

Microsoft 365 Intelligent Security Solutions

Microsoft 365’s commercial cloud offering has received several new intelligent security features designed to help IT and security professionals manage security across enterprises.

The first feature includes Microsoft Secure Score and Attack Simulator. Secure Score enables organisations to determine which controls help to protect users, data, and devices by quickly assessing readiness and providing an overall benchmark score. Organisations can compare their scores to those with similar profiles through built-in machine learning.

Attack Simulator is part of Office 365 Threat Intelligence and is able to let security teams run simulated cyber attacks to test employee responses and tune configurations. Attack options include ransomware and phishing campaigns.

 The latest Windows 10 update (currently in preview) will bring Windows Defender Advanced Threat Protection (ATP) to other parts of Microsoft 365. This includes protection and remediation for Office 365, Windows, and Azure. The new ATP will draw on automated investigation and remediation capabilities, artificial intelligence, and machine learning.

Conditional Access will provide real-time risk assessments so organisations can ensure proper controls for access to sensitive data, without impacting users’ productivity. Microsoft 365 is now adding the device risk level set by Windows Defender ATP to Conditional Access in preview to help ensure that compromised devices can’t access sensitive business data.

Microsoft commits to stronger partner relationships

Microsoft has previewed a new security API for connecting products with Microsoft Intelligent Security Graph, in addition to intelligence from technology partner and customer solutions.

By connecting individual tools to the Intelligent Security Graph, security teams get new perspectives and more meaningful patterns of data to speed up threat investigation and remediation.

The new API is in early testing with a select group of cybersecurity industry leaders that are collaborating with Microsoft to shape its development. The group, which includes Anomali, Palo Alto Networks and PwC, joined Microsoft today to share their own early exploration of the API and how it may improve each company’s ability to protect their mutual customers.

The company has founded Microsoft Intelligent Security Association for security technology partners. Founding members include Palo Alto Networks and Anomali, as well as other existing partners. The association will allow partners to contribute to and benefit from the Intelligent Security Graph and Microsoft security products.

Opinion: Critical data centre operations is just like F1
Schneider's David Gentry believes critical data centre operations share many parallels to a formula 1 race car team.
MulteFire announces industrial IoT network specification
The specification aims to deliver robust wireless network capabilities for Industrial IoT and enterprises.
Google Cloud, Palo Alto Networks extend partnership
Google Cloud and Palo Alto Networks have extended their partnership to include more security features and customer support for all major public clouds.
DigiCert conquers Google's distrust of Symantec certs
“This could have been an extremely disruptive event to online commerce," comments DigiCert CEO John Merrill. 
Schneider Electric's bets for the 2019 data centre industry
From IT and telco merging to the renaissance of liquid cooling, here are the company's top predictions for the year ahead.
China to usurp Europe in becoming AI research world leader
A new study has found China is outpacing Europe and the US in terms of AI research output and growth.
Google says ‘circular economy’ needed for data centres
Google's Sustainability Officer believes major changes are critical in data centres to emulate the cyclical life of nature.
52mil users affected by Google+’s second data breach
Google+ APIs will be shut down within the next 90 days, and the consumer platform will be disabled in April 2019 instead of August 2019 as originally planned.