Microsoft Keynote at RSA
This is the first post Gates RSA conference. Craig Mundie is taking the Microsoft keynote. This year's slogan is 'End to End Trust'. Looks like we will be hearing about Trustworthy Computing. He is doing a tag team with Chris Leach from affiliated security.
They are discussing the tension between security and privacy. With medical records of course we need security to guarantee the privacy.
Now discussing the change in the approach to security at Microsoft, management and process issues.
So finally we get to the technology, the 5 layer 'trusted security stack'. Device has to be trusted, Trusted version of the operating system,, applications have to be trusted as well, trusted processes for managing people, finally trusted data, (Yep, its orange book).
There is a whitepaper.
Of course maybe I should not expect to see much new here given that I just wrote a book on the subject.
Mentioning their research work, putting noise into a data set to prevent identification of individuals. Thus making data sharing easier.
Ah now there is something interesting, using Credentia technology in combination with CardSpace. But its a long road.
