Home
News
E-mail Newsletters
Blogs
Shark Bait
Knowledge Centers
Opinion
Webcasts
Video
Podcasts
White Papers
Computerworld Reports
Zones
Case Study Library
RSS Feeds
Events
Print Subscriptions


Ads by TechWords

Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
Eric Ogren's picture
Eric Ogren

Security Impact

More posts | Read bio

May 7, 2008 - 1:21 P.M.

Windows XP SP3 opens security features

1 comment

Microsoft Windows XP Service Pack 3 is packed with security features that had previously been available to Vista users. This is a good move, as even with four year desktop refresh cycles, IT can move to Windows Server 2008 products with support for mixed XP and Vista endpoints. Organizations are not likely to upgrade to Vista for security reasons only, so Microsoft has stepped up to extend security to XP. I found the top three features that are available in XP SP3 to be:

Network Access Protection (NAP). The ability to ask the endpoint "where it hurts" requires a ubiquitous agent that is best delivered by Microsoft. The best use of NAP is for automated updates to keep endpoint configurations compliant (without calling on IT first). Enforcing configuration compliance needs to cover the majority of the endpoints, which is now possible for those deploying NAP.

Remote Desktop Protocol (RDP). This is an enhancement to allow XP clients to support the new version of Terminal Server. Terminal Server virtualization allows remote users to access Windows-resident applications via a browser. This keeps both applications and application data on protected servers, simplifying IT application maintenance and reducing the risk of confidential data finding its way to laptops.

Server and Domain Isolation. This feature of IPSec cloaks the existence of servers from users that have not been granted access rights. Not only can the users not log on, they cannot even see the protected resources on the network. This feature is not for everyone, but if you have highly sensitive data, such as PCI information, it makes sense to isolate those servers from the rest of the network. IT then has a much tighter operational process to secure.

The existence of these features in XP SP3 means that IT can take advantage of security features introduced in Windows Server 2008 for both Vista and XP users. These might be particularly useful in small and medium sized organizations; larger organizations should look at blended efforts with Cisco NAC and Citrix application delivery.

What People Are Saying

Add new comment
Rate this
Rated +32
1394 Votes

sounds like more trouble

Submitted by umberto d' lumbere on May 9, 2008 - 5:56 A.M.

sounds like more trouble than its worth to me

people should be encouraged to take more personal responsibility and actually learn sufficient information in order to deal with potential problems

but microsoft like to keep people thick because its better for profits...

its a funny old world

Reply | Report this comment

Related Posts

Virtualization news will be heavy in the next few weeks
Microsoft establishes Identity with ILM 2
Is Microsoft getting ready to kill Windows?
Is Microsoft at fault for Web site cracking spree?

Today's Top Stories

New Windows worm builds massive botnet
7 ways to cut your software costs during the economic downturn
Major e-stores malfunction on Black Friday and Cyber Monday
IBM wants info from Apple execs in Papermaster case
Report: Former AOL chief exec tries to raise funds to buy Yahoo
Obama's DHS pick may find support for raising H-1B cap at confirmation hearing
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDG Connect IDG World Expo Infoworld
The Industry Standard ITworld JavaWorld LinuxWorld MacUser Macworld Network World PC World Playlist
Copyright © 2008 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.