WELLINGTON, New Zealand, July 15, 2003 — Microsoft New Zealand today announced that the New Zealand Government has signed an agreement with Microsoft to participate in the recently announced Government Security Program (GSP). The GSP will give the security community within New Zealand Government controlled access to Microsoft® Windows®
source code and other technical information needed to be confident in the enhanced security features of the Windows platform.
Through access to Microsoft source code, New Zealand government agencies will be able to inspect the code line-by-line as well as simulate threats and assess vulnerabilities. The depth of understanding will enable them to take action and provide Microsoft with the appropriate information to assure the security and trustworthiness of the Microsoft Windows platform.
Michael Spring, Director, Information Systems Security, Government Communications Security Bureau, said the GSP allows for enhanced security and a valued partnership with Microsoft that provides added peace of mind for government agencies.
“The GSP agreement provides government agencies in New Zealand with reassurance that we have the tools and information available to build secure solutions with Microsoft, in a real partnership arrangement,” said Spring.
In addition to code access, the agencies are invited to work with Microsoft security professionals both in New Zealand and at Microsoft development facilities in Redmond, Washington, to review various aspects of Windows source-code development, testing and deployment processes; discuss existing and potential projects with Microsoft security experts; and generally interact with and provide feedback directly to Microsoft staff.
“Microsoft’s Government Security Program will provide New Zealand Government agencies with the opportunity to assess the security and integrity of the Microsoft products they deploy firsthand,” said Terry Allen, Enterprise and Partner Group Manager, Microsoft New Zealand. “In addition to source code access, we are providing technical documentation, methods for troubleshooting, access to cryptographic tools subject to export controls and access to Microsoft expert support technicians who can collaborate with New Zealand Government agencies on how they use this source code access.”
The GSP agreement builds upon Microsoft’s drive to provide best value products and services to governments around the globe, to establish a trust relationship in the sensitive and critical area of security.
The no-fee program gives New Zealand Government unprecedented access to Microsoft resources and asks only for information exchange, at the agencies discretion, in return.
The GSP is a crucial element of Microsoft’s efforts to address the unique requirements of governments around the world. In 2001, Microsoft launched the Shared Source Initiative, expanding its long-standing efforts to make Windows source code more transparent to trusted partners and customers. In 2002, the company announced its Trustworthy Computing initiative, placing security at the core of all Windows development efforts.
The GSP also supports and builds on the Common Criteria (CC) certification. Windows 2000 achieved CC certification — a globally accepted, independent standard for evaluating the security features and capabilities of information technology products — last October for the broadest set of real-world scenarios yet achieved by any operating system as defined by the Common Criteria for Information Technology Security Evaluation (CCITSE). Whereas the CC certification provides a common set of requirements that enables customers worldwide to objectively evaluate the security functions of IT products and systems, the GSP takes this a step further by providing national governments with the information they need to conduct robust security analyses and audits of Microsoft’s Windows products.
Additional information about the Government Security Program is available on Microsoft’s Web site at http://www.microsoft.com/presspass/ . More information about Microsoft’s Shared Source Initiative, Trustworthy Computing program can be found, respectively, at http://www.microsoft.com/sharedsource/ , and http://www.microsoft.com/security/ .
Founded in 1975, Microsoft (NASDAQ “MSFT”) is the worldwide leader in software, services and Internet technologies for personal and business computing. The company offers a wide range of products and services designed to empower people through great software — any time, any place and on any device.
Microsoft is a registered trademark of Microsoft Corp. in the United States and/or other countries.
Web links, telephone numbers and titles were correct at time of publication, but may since have changed. For additional assistance, journalists and analysts may contact Microsoft’s Rapid Response Team or other appropriate contacts listed at http://www.microsoft.com/presspass/contactpr.asp .