Windows Mobile 6.5 completes Common Criteria EAL4+ testing

On Friday 5th February Windows Mobile 6.5 completed evaluation by Defence Signals Directorate(DSD) for Common Criteria EAL4+ certification. In the Mobile Products area of the Evaluated Products List you will see status for Windows Mobile OS and MDM, including any status on Crypto testing:


Forefront Security for Office Communications Server Now Available

Microsoft Forefront Security for Office Communications Server (FSOCS) provides fast and effective protection against IM-based malware by including multiple scanning engines from industry-leading security partners and can help to reduce corporate liability by blocking IM messages that contain inappropriate content. The layered, multiple antimalware engine approach provides comprehensive protection against the latest threats, while file…


Exchange critical patch

Just in case you’re not on the security announcement lists…. Executive Summary This security update resolves two privately reported vulnerabilities in Microsoft Exchange Server. The first vulnerability could allow remote code execution if a specially crafted TNEF message is sent to a Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could take complete…


Edge Planning Tool for OCS 2007

Confused about Edge Server configuration and security?  The best idea is to come to UNC316: Office Communications Server 2007 Security: Architecture and Edge Services with Derrick Buckley and Craig Pringle at Tech.Ed in Sydney next week 🙂  But if you can’t make it to Tech.Ed then it might be worthwhile checking out the Edge Planning…


Designing Your Perimeter Network for Office Communications Server 2007 White Paper

This paper answers questions about Office Communications Server 2007 with specific regard to its integration into the perimeter network (also known as DMZ, demilitarized zone, or screened subnet). The first section, “Commonly Asked Questions,” answers key design questions from customers about the initial stages of product deployment. The second section, “Architecture and Networking Best Practices,”…


Information on A/V Edge Ports and Public IP Addresses

I often get asked why the OCS AV Edge server requires a public IP address.  The best explanation I’ve seen was recently posted by Alan Shen over at the OCS Team Blog. The A/V edge server enables users to participate in audio and video connections from outside the corporate network, such as a point to…


UC Certificate Partners for Exchange and OCS 2007

Exchange 2007 and Office Communications Server 2007 have strict requirements for external/public certificates – specifically the use of Subject Alternative Name (SAN) certificates, aka Unified Communications Certificates. We have a KB article (kb929395) which lists some of the providers of these UC certs. INTRODUCTION Microsoft works with public X.509 certification authorities (CAs) to make sure…


OCS 2007 security guide available for download

The security guide provide guidelines for assessing and managing security risks to your Office Communications Server 2007 deployment. Even if your Office Communications Server 2007 deployment is modest, you probably have components in your network that are themselves the subject of books devoted to their security.  Therefore, it is unlikely that this guide covers all…


Windows Mobile 5/6 in Common Criteria Evaluation

Excellent news on the security front for Windows Mobile 5 and 6.  Windows Mobile 5.0 and 6.0 is now on the DSD Evaluated Products List (EPL) list -   Technorati Tags: wm5, wm6, security


Exchange 2007 certificates

While I was having lunch with one of our Exchange Engineers today I asked “what is the most common support call that comes in for Exchange 2007?”. The answer was certificates – customers can be confused about what type of certificate to get, what hostnames are used (most customers use different namespace internally than they…