Secure Future Initiative from Microsoft
Contents
Microsoft has launched the Secure Future Initiative (SFI). The technology giant wants to drive forward cyber security by bringing all areas together. An accumulation of attacks has made Microsoft realize once again that the scale and speed with which cyber criminals are acting require greater protection.
The three pillars of the Secure Future Initiative
The Secure Future Initiative comprises three pillars:
- AI-based defense against cyber attacks
- Technological advances in software development
- Greater use of international standards to protect against cyber threats
AI-based security in the Secure Future Initiative
Unsurprisingly, Microsoft wants to further advance artificial intelligence and make greater use of it to protect against attacks on data and security. To this end, Microsoft is making its in-house Threat Intelligence Center and Threat Analysis Center available to customers. These AI-based security tools also protect Microsoft's own data.
With AI, Microsoft wants to ensure that threats are detected and combated more quickly. Where humans, even with the highest level of expertise, have a reaction time that depends on when the problem is detected and tracked down, AI reacts directly and thus fends off attacks immediately.
Microsoft adheres to its own principles for the responsible use of AI. This is likely to be an important factor, especially in view of the European Union's data privacy and security guidelines.
Secure software in the Secure Future Initiative
Microsoft also wants to take software development to a new, more secure level through automation and the use of AI. To this end, Microsoft is developing the Security Development Lifecycle (SDL) from 2004 into the dynamic SDL (dSDL). This should enable developers and engineers to react quickly and spontaneously to new threats.
In addition, secure standard settings for multi-factor authentication (MFA) for all Microsoft services are to be made available to all customers in 2024.
Identity protection is an important point. As part of the Secure Future Initiative, Microsoft is developing a fully automated encryption system that keeps keys hidden even in compromised processes.
International standards in the Secure Future Initiative
The increased application of international cybersecurity standards relates to the implementation of a digital Geneva Convention. Microsoft brought this up in 2017, but the idea has not yet been implemented. However, due to the rapid development in the technology sector and the ever-increasing threats, the arguments for implementing a similar convention are certainly growing.
Microsoft's proposals to date for the implementation of such international standards focus on three aspects:
- States should not participate in cyber operations that jeopardize the security of cloud services
- States should not jeopardize the security of cloud services for espionage purposes without good reason
- Cyber operations should be designed in such a way that the costs are not borne by those who are not the target of the operations
States should also act more jointly. The aim is to create greater joint responsibility. How and whether this can be implemented remains to be seen.
Learn Microsoft security with skill it
In our seminars on security, compliance and identity, you will learn how to take the best possible cyber security measures now. In theMicrosoft Cybersecurity Architect training , you will design cybersecurity strategies and identify threats in our Microsoft Security Operations Analyst course. This ensures that your applications are optimally protected and you are prepared for the Secure Future Initiative.
