Secure by Deployment

The goal of “secure by deployment” is to ensure that deployed software remains free from newly discovered vulnerabilities or security weaknesses.

To accomplish this goal, Microsoft must help users and administrators deploy the product in a secure manner and keep it secure while the product is in use. Regardless of the hard work undertaken to achieve “secure by design” and “secure by default,” inventive attackers may find security holes, software will still have bugs, and administrators will make configuration mistakes.

What Is Microsoft Doing?

Steve Ballmer, Microsoft’s CEO, typically plays the role of Microsoft’s chief cheerleader. But lately Ballmer has put that role aside; rather than leading the cheer for Microsoft, he used several recent speeches as opportunities to address the security of Microsoft’s products. For example, during his keynote speech at the Microsoft Worldwide Partner Conference in Oct. 2003, Ballmer reviewed the progress the company has made to improve the security of its products and introduced the concept of perimeter shielding or new safety processes and security software, which Microsoft hopes will become a first line of defense in the security battle.