Microsoft Builds In Security Bypasses
http://www.schneier.com/blog/]
<p>I am very suspicious of tools that
allow you to bypass network security systems. Yes, they make life easier. But
if security is important, than all security decisions should be made by a
central process; tools that bypass that centrality are very
risky.</p>
<p>I didn’t like
SOAP
for that reason, and I don’t like the sound of this new Microsoft
<blockquote>We’re
always looking for new things that can allow you to do things uniquely different
today. For example, this new feature tool we have would allow me to tunnel
directly using HTTP into my corporate Exchange server without having to go
through the whole VPN (virtual private network) process, bypassing the need to
use a smart card. It’s such a huge time-saver, for me at least, compared to how
long it takes me now. We will be extending that functionality to the next
version of
Windows.</blockquote>
<p>That’s
Martin Taylor, Microsoft’s general manager of platform strategy,
talking.</p>
permalink: comments:
feedURL:http://www.schneier.com/blog/atom.xml