But will users put their trust in Microsoft to protect them from viruses, Trojans, worms and other Internet nasties? Especially given that much of this malware leverages bugs that are present in Microsofts own code?
Microsoft Security Essentials isnt the first time the Redmond giant has ventured into the consumer security market. Readers with long memories will remember that MS-DOS 6.0 shipped with Microsoft AntiVirus (MSAV).
This was a very basic scanner, capable of detecting 1,234 viruses. (Times were different back then, and MSAV saw only one update compare that to the hourly updates that most packages receive nowadays).
More recently, Microsoft offered a commercial solution called Windows Live OneCare, a tool that incorporates both security features and easy access to Windows tools such as disk cleanup and defragger. However, with the announcement of Microsoft Security Essentials code-named Morro also came news that the plug would be pulled on Windows Live OneCare in June 2009.
Ive had the chance to take a look at Microsoft Security Essentials and it seems like a decent enough product. Its easy to install, the defaults are well thought out and its easy for users to figure out how to use the program. (Basically users dont need to touch it until it catches some malignant bit of code trying to sneak its way onto their system).
Ive even gone so far as to throw some malware at it and it seems to cope with everything. That said, my capability to test antivirus against malware is limited, but independent testing organization AV-Test.org labs looked at Microsofts new offering and were pretty impressed. All in all, it seems like Microsoft has gotten it right with this time, and Microsoft Security Essentials is a pretty good program.
Even for a product still in the beta stage, theres no obvious show-stopping gotcha to be seen.
Note: Even though Microsoft closed the door on more downloads of Microsoft Security Essentials, you can still get your hands on the download files if you know where to look (clue: try here!).
Now, given that Microsoft Security Essentials will be a free download for everyone running a genuine copy of Windows (as determined by Microsoft), youd expect it to be a smash hit. Why pay for a security product when you can pick one up for nothing?
Youd expect for the bottom to fall out of the security software market as users allow their yearly subscriptions to lapse and switch from for-cost to no-cost. But that wont happen. Why? It comes down to trust. The problem facing Microsoft is that even among Windows users (in other words, leaving out all the Mac and Linux folks who might skew the results), the company is seen as having a bad track record when it comes to security.
In a world where people now have the choice of operating systems, many people are using Windows out of necessity rather than desire. While no code can ever be 100% bug-free, Microsofts bugs (and the continuous drip-feed of patches to plug up these vulnerabilities) affect a huge number of people.
Then there are the big name malware that make it to the popular media Conficker, Storm, Blaster, Sassar, Melissa, Chernobyl the list goes on and on. These A-list bits of malware give the impression of Windows being far more insecure than it actually is.