Comment Response from OneCare's release manager (Score 1) 359
Back in February, slashdot ran a similar story about Microsoft's entry into the "antivirus" space (as you've noted today OneCare is more than just AV). I had crafted a response to that thread, but by the time it was posted the story was way off the main page and I doubt anyone even saw it. :)
Here's a reposting of the original thread (http://it.slashdot.org/comments.pl?sid=176820&thr eshold=1&commentsort=0&mode=thread&cid=14719345). It's just a straight copy/paste, and I'll go through this morning and do a follow-up to specific comments on this thread. I think this is a great discussion, and I'd like for it to continue.
Thanks - Luke Abrams
=====
Hi folks,
My name is Luke Abrams, and I'm the release manager for Windows OneCare as well as a frequent Slashdot reader. I was stoked that OneCare was slashdotted today, and read through (almost) all of the comments and replies. As always, no shortage of opinions here, and it's interesting to see what the reaction in this community has been to the move by Microsoft to release an anti-virus solution.
I wanted to post my personal thoughts on Windows OneCare, both as an employee of Microsoft/OneCare, and as a bona-fide geek (if you need any proof I'll show you my nmos/pmos tattoos sometime ;).
1. "The problem...and the fix" - many of your comments were criticisms that Microsoft was selling solutions to the problems that it caused. It's no secret that all software has bugs and vulnerabilities - and like other software companies, we are committed to building software as secure as we can make it and finding and fixing bugs as quickly as possible. But let's not confuse code defects (exploitable or otherwise) with malware, and methods of protection. Let me dive into an analogy for a bit to flesh out the thought - think home security. When you build a house, you also want to make sure that it's secure. You install locks on doors, make sure windows only open from the inside, put your valuables in a safe, etc. But whether or not the builders left any exploitable holes in their design, you aren't really protected without a security system. Let's break this system down:
Good = secure design for the house
Better = above + updates to the design of the house as exploits are made known + good security practices (e.g. key management - don't leave your key in the mailbox!)
Best = above + active security system and a police force/infrastructure.
Alarm system (real-time scanning). In the event that some unauthorized entity enters into your house, an alarm will go off and the individual is immobilized until you decide whether to allow them to enter or not.
Police with "most wanted list" (signature detection) - they know who the bad guys are and stop them before they get to you.
Detectives/agents that update the "most wanted list" (malware investigators/signature updates) - this is critical in the security arms race, because the bad guys don't stand still. If you have an AV solution with out-of-date signatures, you're not protected against any threat that has been released since your last update (unless your heuristics are really good)
Beat cops with good instincts (heuristic detection) - they can detect suspicious activity and stop some of the bad guys even before they're on the most wanted list.
2. "MS is charging for fixes to their own OS!" - this is not the case. Microsoft will continue to service their products with QFEs, SPs, etc. for free through Microsoft Updates. It's in our best interest to help protect all our customers this way, not just subscribers to one particular service. OneCare (among other things) simply makes things easy for consumers specifically by helping assist with the updating process from Microsoft Update as part of its active protection. As for the active protection piece, MS has long told users they need antivirus protection to be safe - even Windows Security Center in XPSP2 tells you that you're unprotected if you don't have an antivirus or firewall program installed and active.
3. "OneCare will take advantage with Internal APIs" - couldn't be farther from the truth. We take great pains to help ensure that we are competing fairly in the marketplace, and we plan to be a leader in PC care by making a great product that delights our customers. The OneCare service is built on top of the same public APIs available to all vendors.
Some of the questions I've read in here today:
Q: Does the Beta cost $20?
A: Nope - the Beta is free until we release. Use it, enjoy, send us feedback. Beta users that purchase during the special offer period in April do get a special rate of ~$20 for a 1 year subscription, though.
Q: Does the OneCare system automatically turn off/on features that make Windows safer?
A: Not sure what this refers to, other than something like MBSA (which we don't currently use) or Microsoft Updates (which we do). I would love to hear what features you think we ought to turn on/off automatically.
Q: Does it automatically patch holes that you have, or do you do that manually?
A: Again, indirectly, through Microsoft Updates. With OneCare installed, we tell you you're unprotected if you're not getting automatic updates and/or if you have missing updates, and provide a 1-click action item to help fix this and get you protected again.
Also, I should note that anti-virus is one (important) component of OneCare. We're really approaching the customer pain point as one of PC health, and not just security. OneCare provides antivirus, antispyware (coming soon), a serviced two-way firewall (we regularly push updates to our FW policies), and data protection through backups. I'm biased, obviously, but I think it's a great all-in-one solution that I've installed on my PCs and all of the PCs of my friends and family that I provide "free" tech support to. I can't tell you how lovely it is to talk to my mom and tell her "Mom, if your icon is green, you're good".
Anyway, I just wanted to engage in the discussion and toss in my 2 cents. I invite everyone to give the product a shot (free @ www.windowsonecare.com [windowsonecare.com])and let me know what you think about it. I'll even put my money where my mouth is and pony up my email address: luke@windowsonecare.com - I'll respond to all the non-viagra mail you send me. ;)
Thanks,
Luke Abrams
Here's a reposting of the original thread (http://it.slashdot.org/comments.pl?sid=176820&th
Thanks - Luke Abrams
=====
Hi folks,
My name is Luke Abrams, and I'm the release manager for Windows OneCare as well as a frequent Slashdot reader. I was stoked that OneCare was slashdotted today, and read through (almost) all of the comments and replies. As always, no shortage of opinions here, and it's interesting to see what the reaction in this community has been to the move by Microsoft to release an anti-virus solution.
I wanted to post my personal thoughts on Windows OneCare, both as an employee of Microsoft/OneCare, and as a bona-fide geek (if you need any proof I'll show you my nmos/pmos tattoos sometime
1. "The problem...and the fix" - many of your comments were criticisms that Microsoft was selling solutions to the problems that it caused. It's no secret that all software has bugs and vulnerabilities - and like other software companies, we are committed to building software as secure as we can make it and finding and fixing bugs as quickly as possible. But let's not confuse code defects (exploitable or otherwise) with malware, and methods of protection. Let me dive into an analogy for a bit to flesh out the thought - think home security. When you build a house, you also want to make sure that it's secure. You install locks on doors, make sure windows only open from the inside, put your valuables in a safe, etc. But whether or not the builders left any exploitable holes in their design, you aren't really protected without a security system. Let's break this system down:
Good = secure design for the house
Better = above + updates to the design of the house as exploits are made known + good security practices (e.g. key management - don't leave your key in the mailbox!)
Best = above + active security system and a police force/infrastructure.
Alarm system (real-time scanning). In the event that some unauthorized entity enters into your house, an alarm will go off and the individual is immobilized until you decide whether to allow them to enter or not.
Police with "most wanted list" (signature detection) - they know who the bad guys are and stop them before they get to you.
Detectives/agents that update the "most wanted list" (malware investigators/signature updates) - this is critical in the security arms race, because the bad guys don't stand still. If you have an AV solution with out-of-date signatures, you're not protected against any threat that has been released since your last update (unless your heuristics are really good)
Beat cops with good instincts (heuristic detection) - they can detect suspicious activity and stop some of the bad guys even before they're on the most wanted list.
2. "MS is charging for fixes to their own OS!" - this is not the case. Microsoft will continue to service their products with QFEs, SPs, etc. for free through Microsoft Updates. It's in our best interest to help protect all our customers this way, not just subscribers to one particular service. OneCare (among other things) simply makes things easy for consumers specifically by helping assist with the updating process from Microsoft Update as part of its active protection. As for the active protection piece, MS has long told users they need antivirus protection to be safe - even Windows Security Center in XPSP2 tells you that you're unprotected if you don't have an antivirus or firewall program installed and active.
3. "OneCare will take advantage with Internal APIs" - couldn't be farther from the truth. We take great pains to help ensure that we are competing fairly in the marketplace, and we plan to be a leader in PC care by making a great product that delights our customers. The OneCare service is built on top of the same public APIs available to all vendors.
Some of the questions I've read in here today:
Q: Does the Beta cost $20?
A: Nope - the Beta is free until we release. Use it, enjoy, send us feedback. Beta users that purchase during the special offer period in April do get a special rate of ~$20 for a 1 year subscription, though.
Q: Does the OneCare system automatically turn off/on features that make Windows safer?
A: Not sure what this refers to, other than something like MBSA (which we don't currently use) or Microsoft Updates (which we do). I would love to hear what features you think we ought to turn on/off automatically.
Q: Does it automatically patch holes that you have, or do you do that manually?
A: Again, indirectly, through Microsoft Updates. With OneCare installed, we tell you you're unprotected if you're not getting automatic updates and/or if you have missing updates, and provide a 1-click action item to help fix this and get you protected again.
Also, I should note that anti-virus is one (important) component of OneCare. We're really approaching the customer pain point as one of PC health, and not just security. OneCare provides antivirus, antispyware (coming soon), a serviced two-way firewall (we regularly push updates to our FW policies), and data protection through backups. I'm biased, obviously, but I think it's a great all-in-one solution that I've installed on my PCs and all of the PCs of my friends and family that I provide "free" tech support to. I can't tell you how lovely it is to talk to my mom and tell her "Mom, if your icon is green, you're good".
Anyway, I just wanted to engage in the discussion and toss in my 2 cents. I invite everyone to give the product a shot (free @ www.windowsonecare.com [windowsonecare.com])and let me know what you think about it. I'll even put my money where my mouth is and pony up my email address: luke@windowsonecare.com - I'll respond to all the non-viagra mail you send me.
Thanks,
Luke Abrams
