About RSS
Search for: in 

Windows Watch - an XP & Vista blog

Microsoft
Microsoft's Cofee is designed to offer police and other agencies a way of collecting digital evidence
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com

Free email newsletters




Jargon Buster

ADVERTISEMENT

Microsoft Cofee brews 'back door' fears

Gartner welcomes assurances that legal agencies cannot access Microsoft code

Robert Jaques, vnunet.com 09 May 2008
ADVERTISEMENT

Industry experts have welcomed assurances from Microsoft that the firm has not provided law enforcement agencies with a 'back door' into its systems.

Microsoft briefed Gartner on 2 May about its Computer Online Forensic Evidence Extractor (Cofee) USB device that the company began distributing to law enforcement agencies in 2007.

Cofee is designed to offer police and other agencies a way of collecting digital evidence, decrypting passwords and analysing computer and web surfing activity.

The assurances came after reports claiming that Cofee could provide a 'back door' into Microsoft operating systems and applications.

In its Gartner briefing, however, Microsoft stated that Cofee offers nothing more sinister than a set of scripts designed to help law enforcement professionals take a system snapshot.

Microsoft claimed that the commands held on the USB stick are all public, and that no new code has been written and no back doors are present.

"Gartner believes, and Microsoft agrees, that it was a mistake to widely deploy the Cofee initiative without public disclosure and a formal distribution plan," said John Girard, a vice president and distinguished analyst at Gartner.

"We also believe that Microsoft should work closely with professional third-party forensics product and service vendors to develop, manage and track future data capture utility projects.

"Another concern raised by Microsoft's failure to offer public information about this initiative is that the widespread attention it has drawn will likely encourage otherwise well-intentioned enterprise IT personnel to search the internet for penetration tools with which to experiment.

"Enterprises should review their internal protection measures to ensure that their business data is secure and private."

See also:

Microsoft
Microsoft preps four security patches
Three 'critical' fixes expected in monthly update  09 May 2008
Microsoft
Microsoft seeks a few good geeks
Last few places left in UK Challenge  08 May 2008
Microsoft
Windows XP SP3 hits the web
Service Pack 3 reaches automatic update  07 May 2008

All Enterprise Security Technology
Tags: Microsoft

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story
R E A D E R   C O M M E N T S
Post your comment Post your comment   What is this?

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
Business Development Manager (IT & Comms)
Manchester, United Kingdom | Peel Communications Limited
  Business Development Manager (IT & Comms), Manchester, (£35k)with Company Car, Healthcare & Pension. Additional team bonus subject to performance and Manager discretion. A leading property and transport Group with multi-purpose developments throughout the UK ... more >
Administrative Computing Unit- Programmer/Analyst (Content Management System)
United Kingdom | Swansea University
Programmer/Analyst (Content Management System), £25,135 - £28,290 pa Administrative Computing Unit   Joining an established team your role is to develop and enhance the University's use of the Terminal-Four Content Management System. Working closely with technical ... more >
Website Content Manager
London, United Kingdom | Kings College London
Website Content Manager - Mental Health Care Department of Psychology/Computing and Knowledge Management This is a unique opportunity for someone who can combine their talents as a web editor with an excellent ability to communicate ... more >
Architect - Midrange / Unix
Milton Keynes, Buckinghamshire, United Kingdom | EDS
Job Description To be primarily an expert in a particular technology (Midrange UNIX), LINUX and use the knowledge to architect infrastructure solutions for clients. Role To produce customised midrange solutions for clients. Where solutioning cannot ... more >
More job opportunities
Join our fight for a fair deal when shopping online
Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site . Advertise
Consumer Technology websites:
Active Home Product reviews, competitions, news
Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads
Gizmodo the daily gadget blog: technology news and reviews
PC Magazine your personal guide to technology
PCW software product reviews, hardware product reviews, buyers' guides, competitions
WebAct!ve what's happening on the web
What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more
Blogs:
Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP % Vista news
Jobs & Recruitment websites:
Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Top IT Employers 2005
Inquirer Jobs Software Engineer Jobs, firmware developer jobs, electronics engineer jobs
Other titles in the Incisive Media network:
Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . IT Week . vnunet.com
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy
© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503
Loading...

ADVERTISEMENT