Microsoft holds security summit after CrowdStrike disaster



Following the CrowdStrike

incident that caused problems for Windows PCs around the world, Microsoft has announced that it will host a security summit inviting companies such as CrowdStrike.

Microsoft to host Windows Endpoint Security Ecosystem Summit in September | Windows Experience Blog
https://blogs.windows.com/windowsexperience/2024/08/23/microsoft-to-host-windows-endpoint-security-ecosystem-summit-in-september/

Microsoft to host security summit after CrowdStrike disaster | Ars Technica
https://arstechnica.com/security/2024/08/microsoft-to-host-security-summit-after-crowdstrike-disaster/

According to Microsoft, the 'Windows Endpoint Security Ecosystem Summit' will be held at its headquarters in Redmond, Washington on September 10, 2024. Microsoft has invited major partners providing endpoint security technology, including CrowdStrike, to discuss improving security resilience and protecting infrastructure.

The background to this is the large-scale Windows PC outage that occurred on July 19, 2024. On that day, CrowdStrike updated its own product, which had access to the kernel, causing device malfunctions on a global scale.

CrowdStrike releases root cause analysis after causing global outage with Blue Screen of Death - GIGAZINE



Regarding the summit to be held following this incident, Microsoft said, 'CrowdStrike's outage illustrates important lessons for the ecosystem. Discussions at the summit will focus on improving security and safety, designing resilient systems, and working together as a community to best serve current and future customers.'

The summit, which will invite representatives of ecosystem companies and governments, is expected to bring security issues to light and promote discussions on how to address them. However, security product seller Proofpoint has expressed concerns that Microsoft may use the summit to signal its intention to prioritize its own products over third-party alternatives.



As regulators step up their investigations and scrutiny of the extent to which third-party companies have access to the kernel, it has been pointed out that Microsoft may block third-party access to the kernel if it is hit by the regulatory scrutiny. According to the Financial Times, Microsoft

said it is 'considering several options to make the system more stable, including the possibility of completely blocking access to the Windows kernel.'

In response to this opinion, AJ Grotto, former White House senior director of cybersecurity policy, pointed out that 'Microsoft bears some responsibility because the July chaos would not have happened without Microsoft's decision to allow access to the kernel.' Allie Mellen, an analyst at market research firm Forrester, said, 'If they were to ban access to the kernel, it would be a fundamental shift in Microsoft's philosophy and business model. However, while banning access to the kernel may reduce the risk of causing a major outage, it would give security product makers very limited access, which could make their products less effective against hackers,' and suggested that both pros and cons need to be considered.



in Security, Posted by log1p_kr