In a recent interview with Microsoft I had the chance to ask if the true measure of the Windows Vista security is a combination between deployment practices and code quality. But the fact of the matter is that, as far as security is concerned, there will always be something more Microsoft will have to do. With Vista, as with any other piece of software, Microsoft delivers a standard for security. A standard that once broken needs to be elevated. This is a perpetual process.

"There's always more we can do. Security will never be a destination, instead it's a journey. We remain confident that Windows Vista is the most secure version of Windows to date, however it's important to note that no software is 100% secure. Our goal is to give PC users the control and confidence they need so they can continue to get the most out of their PCs and have a safer and more secure computing experience," said Stephen Toulouse, senior program manager for the Trustworthy Computing Group.

And in the end, the customer plays a vital role in security scenarios. The current threat landscape is evolving in such a manner that social engineering is taking the center stage as opposed to code quality. And there is in fact little protection against user actions.

"I'm very proud of Windows Vista and I believe that the true measure of Windows Vista's security success is already being attained. We have successfully released a product that is far more secure than any other operating system that we have ever released. Security researchers and security companies have had an unprecedented level of access and review of the code. I'm excited that it's out there now and people can put it to the test," Toulouse added.