Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Microsoft upgrades free app security tool

Enhanced Mitigation Experience Mitigation Experience Toolkit 2.0 helps Internet apps ward off targeted attacks

Microsoft released this week an upgrade to a tool that helps secure applications for the Internet without having to recode them.

The company's EMET (Enhanced Mitigation Experience Toolkit) 2.0 is a free tool designed to prevent current exploitation techniques used throughout the Internet, the company said. EMET 2.0 is accessible at this Web page. The tool helps to block targeted attacks against unpatched vulnerabilities in Microsoft, third party, or line of business applications, Microsoft said.

[ Microsoft this week also is hailing its Silverlight rich Internet technology. | Keep up with app dev issues and trends with InfoWorld's Fatal Exception blog and Developer World newsletter. ]

"While EMET can be used by anybody, it is primarily targeted at protecting applications on machines that are at high risk for attack. Good examples include line of business applications on back-end servers and browsers on the desktops of corporate executives. These are scenarios where an application compromise could be particularly damaging," said Andrew Roths and Fermin J. Serna of Microsoft Security Research Center (MSRC) Engineering, in a blog post.

Featured in version 2.0 is a new user interface that shows running processes and whether EMET is active for them. Also, the tool adds the following mitigations to applications that do not support them natively:

  • Mandatory address space layout randomization
  • An export address table capability in which hardware breakpoints are used to filter access to the EAT of kernel32.dll and ntdll.dll
  • Structured Error Handling Overwrite Protection, preventing Structured Exception Handling overwrite exploitation
  • Dynamic Data Execution Prevention, which marks portions of a process's memory non-executable, to make it difficult to exploit memory corruption vulnerabilities
  • NULL page allocation, to block attackers from taking advantages of NULL references in user mode
  • Heap Spray Allocation, to pre-allocate memory addresses to block common attacks that fill a process's heap with specially crafted content

EMET 2.0 allows customers to opt-in applications via a command line or through a GUI utility. Mitigations can be applied on a per-application and per-process basis. The tool can be updated as new mitigation technologies become available.

Thirty-two and 64-bit applications are supported.

This article, "Microsoft upgrades free app security tool," was originally published at InfoWorld.com. Follow the latest developments in business technology news and get a digest of the key stories each day in the InfoWorld Daily newsletter.

Read more about developer world in InfoWorld's Developer World Channel.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Andrew, Microsoft, Toolkit
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: software, Security Central, security, Microsoft, Developer World, application development
Latest Blog Posts
Whitepapers
  • Increasing Uptime and Efficiency with Switched PDUs - Two ways to use rack PDUs for more than just distributing power
    Power distribution units (PDUs) play an essential role in delivering power safely and at appropriate voltages to servers and other network resources. A particular class of power distribution units known as rack Switched PDUs, however, is capable of performing additional functions that can help data center managers improve the efficiency and reliability of their IT infrastructure. This paper provides a brief introduction to rack Switched PDUs and describes two underappreciated yet powerful ways to take advantage of their advanced functionality.
    Learn more »
  • The Pathways ICT Leadership Development Program | Turning today’s ICT professionals into tomorrow’s business leaders | 2012 Course Curriculum
    Developed by the CIO executive Council, pathways is a unique,flexible, self-managed, self-paced 12-month professional development program that brings together best practices, thought leadership and business insights for today’s most promising ICT professionals. Pathways is designed and delivered by leading local and global CIOs; enabling participants to capitalise on mentor CIOs’ personal experiences, expertise and knowledge.
    Learn more »
  • Ten ways to save money with IBM Tivoli Storage Manager
    According to a recent report by Gartner, “By 2014, at least 30% of organizations will have changed backup vendors due to frustration over cost, complexity and/or capability. ”However, replacing a backup infrastructure can be a painful and disruptive process. The best replacement solution will beone that not only addresses these issues, but also demonstrates significant cost savings, enables a rapid return on investment and ensures a seamless transition.This white paper describes 10 ways that IBM® Tivoli® Storage Manager solutions can help organizations save money while addressing their data storage challenges, including those associated with exponential data growth.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments

HP and IDG news, product videos and resources