On The Insider: Britney's Bikini-Clad Top 10
BNET Business Network:
BNET
TechRepublic
ZDNet

June 20th, 2007

Microsoft insults our intelligence on Virtualization security

Posted by George Ou @ 8:04 am

Categories: AMD, Desktop, Hardware, Intel, Microsoft, News, Security, Virtualization, Vista

Tags: Security, Hypervisor, Virtualization, EULA, Microsoft Corp., Rootkit, George Ou

With the announcement that Microsoft will not ease up on its EULA (End User License Agreement) terms for virtualizing lower-tiered versions of Windows Vista, Microsoft has once again pulled out the security argument for its decision again and I must say that I find it rather insulting.  It’s not that I think Microsoft doesn’t have a right as a private business to set the terms of the EULA as they see fit, but don’t take us for fools.  If they want to restrict Virtualization, just come out and say it and don’t make up ridiculous excuses for it.  If Microsoft doesn’t want Mac users to be able to run Vista Home inside Parallels for strategic reasons, then that is their business.  Trying to stop a Hypervisor Rootkit with a EULA is like trying to stop Malware with a EULABut since that doesn’t sound warm and fuzzy, we keep hearing the security argument.  The problem is that this is disingenuous and could damage public relations in the long run.

If it were possible to stop malicious activity with a few choice words in a license agreement, then we would be in secure computing utopia right now.  You don’t even need to be a security expert to smell the bad logic in this argument.  If it is as Microsoft says dangerous to permit an Operating System to be virtualized because of Hypervisor-based Rootkits, then why only make that restriction on less expensive versions of Vista?  But the truth of the matter is that the Operating System isn’t in a position to decide whether it gets virtualized or not especially when it’s a transparent hardware-based virtualization technology.

Trying to stop a Hypervisor Rootkit with a EULA is like trying to stop Malware with a EULA.  If and when a Rootkit wants to put the host Operating System in to a virtual prison, it will do so silently and the host will have no conventional means to detect the compromise.  The only effective way to stop this kind of activity is to disable Intel VT and AMD’s AMD-V (AKA Pacifica) technology from within the BIOS.  Stopping Hypervisor Rootkits has nothing to do with the EULA and Microsoft should come clean on this.

George Ou is Technical Director of ZDNet. See his full profile and disclosure of his industry affiliations.

  • Talkback
  • Most Recent of 23 Talkback(s)
Microsoft figures
So many people have used their software
for so long with all these restrictions
that their software is the only option
out there. People will buy it with all
the restrictions. Bill Gat... (Read the rest)
Posted by: Ole Man Posted on: 06/25/07 You are currently: a Guest | | Terms of Use
Microsoft insults our intelligence.  deaf_e_kate | 06/20/07
Spot on  Tony Agudo | 06/20/07
Sheesh!  bportlock | 06/20/07
You are probably right  NonZealot | 06/20/07
You Mac Fanboys are boring!  MarcB_z | 06/25/07
You gottem!  Ole Man | 06/20/07
What they want to say is...  odubtaig | 06/20/07
Well that went right over your head, didn't it?  James T. Kirk | 06/25/07
If it ain't broke, don't fix it  Yagotta B. Kidding | 06/20/07
Indeed  bportlock | 06/20/07
Yup, smarter than Apple even!!  NonZealot | 06/20/07
BORING!  MarcB_z | 06/25/07
Let's not forget the corollary  heres_johnny | 06/21/07
Microsoft will lose some of my business  kmatzen@... | 06/20/07
Or it could be DRM related...  Indulis | 06/20/07
DRM has nothing to do with this  georgeou | 06/20/07
hypervisor rootkits are a non-issue  inaequitas | 06/20/07
But is HDCP necessarily an issue?  odubtaig | 06/21/07
"DRM has nothing to do with this"  Ole Man | 06/21/07
Everything is out in the open with MS  dfolk | 06/21/07
Its All About Control  chessmen | 06/22/07
Does this sort of thing  Freebird54 | 06/25/07
Microsoft figures  Ole Man | 06/25/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Click Here
advertisement

Recent Entries

Top Rated

    Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
    Reduce risk. Reduce complexity. Increase reliability.
    A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
    Learn more >>
    Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
    Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
    Learn more about the free, six-month trial offer>>
    The more you simplify, the more you save
    When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
    Learn more >>
    Reduce risk. Reduce complexity. Increase reliability.
    A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
    Learn more >>
    Keep Up With The Latest In Document Management with The DocuMentor.
    Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
    Learn more >>
    Save time with automated shipping solutions
    The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
    Visit the UPS Business Essentials Guide
    advertisement

    Archives

    ZDNet Blogs

    White Papers, Webcasts, and Downloads