14 DAY TRIAL // If you think that security is an issue associated exclusively with Microsoft software products, then think again. As a matter of fact, Apple products are just as vulnerable. And this conclusion can be generalized to the point of an universal status quo applicable to all software. There simply is not a solution built from code that will act as a panacea for hacking or for security. And this is independent of brand or software quality. At least this is the opinion of Roger Halbheer, Chief Security Advisor for Europe, the Middle East and Africa at Microsoft. And in order to illustrate his point, Halbheer used the recent hacking of Apple's iPhone as an example.
In a blog post titled "Security not only a Microsoft problem - iPhone finally rooted" Halbheer commented: "it was to be expected - not because Apple built bad security in their iPhone, I am definitely not in the position to judge, but because it was going to happen. Any software product is going to have vulnerabilities as a matter of fact. The more attractive a device or a piece of software is, the more likely it is that the bad guys look at it and publish exploits and vulnerabilities - and the iPhone is very much on top of this list."
In mid July, researchers from Independent Security Evaluators revealed that the iPhone could be completely owned via a vulnerability exploited through a malicious webpage. A WiFi connection is mandatory for a successful attack. Halbheer explained that because of Windows' ubiquity - the Redmond company is close to hitting an installed base of 1 billion for its operating system - Microsoft is at the center stage of attacks. This position generated a change of strategy for the company with the introduction of the Trustworthy Computing and the adoption of a product development strategy focused on security, such as the SDL.
"We have been blamed for several years now with regards to security and we have been in the key focus of this movement. We accepted this and changed heavily. During my first speech about Trustworthy Computing about 5 years ago I said that the whole industry will finally have to move," Halbheer added.