Do You Trust Microsoft to Secure Windows?

The free service Microsoft Security Essentials, codenamed Morro, could change the PC security business – if Microsoft can surmount a major perception problem.
(Page 1 of 2)

Last week Microsoft allowed 75,000 users past the velvet rope and gave them access to the beta of its new free antimalware application – Microsoft Security Essentials.

But will users put their trust in Microsoft to protect them from viruses, Trojans, worms and other Internet nasties? Especially given that much of this malware leverages bugs that are present in Microsoft’s own code?

Microsoft Security Essentials isn’t the first time the Redmond giant has ventured into the consumer security market. Readers with long memories will remember that MS-DOS 6.0 shipped with Microsoft AntiVirus (MSAV).

This was a very basic scanner, capable of detecting 1,234 viruses. (Times were different back then, and MSAV saw only one update – compare that to the hourly updates that most packages receive nowadays).

More recently, Microsoft offered a commercial solution called Windows Live OneCare, a tool that incorporates both security features and easy access to Windows tools such as disk cleanup and defragger. However, with the announcement of Microsoft Security Essentials – code-named Morro – also came news that the plug would be pulled on Windows Live OneCare in June 2009.

I’ve had the chance to take a look at Microsoft Security Essentials and it seems like a decent enough product. It’s easy to install, the defaults are well thought out and it’s easy for users to figure out how to use the program. (Basically users don’t need to touch it until it catches some malignant bit of code trying to sneak its way onto their system).

I’ve even gone so far as to throw some malware at it – and it seems to cope with everything. That said, my capability to test antivirus against malware is limited, but independent testing organization labs looked at Microsoft’s new offering and were pretty impressed. All in all, it seems like Microsoft has gotten it right with this time, and Microsoft Security Essentials is a pretty good program.

Even for a product still in the beta stage, there’s no obvious show-stopping gotcha to be seen.

Note: Even though Microsoft closed the door on more downloads of Microsoft Security Essentials, you can still get your hands on the download files if you know where to look (clue: try here!).

Now, given that Microsoft Security Essentials will be a free download for everyone running a “genuine” copy of Windows (as determined by Microsoft), you’d expect it to be a smash hit. Why pay for a security product when you can pick one up for nothing?

You’d expect for the bottom to fall out of the security software market as users allow their yearly subscriptions to lapse and switch from for-cost to no-cost. But that won’t happen. Why? It comes down to trust. The problem facing Microsoft is that even among Windows users (in other words, leaving out all the Mac and Linux folks who might skew the results), the company is seen as having a bad track record when it comes to security.

In a world where people now have the choice of operating systems, many people are using Windows out of necessity rather than desire. While no code can ever be 100% bug-free, Microsoft’s bugs (and the continuous drip-feed of patches to plug up these vulnerabilities) affect a huge number of people.

Then there are the big name malware that make it to the popular media – Conficker, Storm, Blaster, Sassar, Melissa, Chernobyl … the list goes on and on. These A-list bits of malware give the impression of Windows being far more insecure than it actually is.

Page 1 of 2

1 2
Next Page

Tags: Windows, security, Microsoft, malware

0 Comments (click to add your comment)
Comment and Contribute


(Maximum characters: 1200). You have characters left.