Microsoft
Microsoft's Cofee is designed to offer police and other agencies a way of collecting digital evidence
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Microsoft Cofee brews 'back door' fears

Gartner welcomes assurances that legal agencies cannot access Microsoft code

Robert Jaques, vnunet.com 09 May 2008
ADVERTISEMENT

Industry experts have welcomed assurances from Microsoft that the firm has not provided law enforcement agencies with a 'back door' into its systems.

Microsoft briefed Gartner on 2 May about its Computer Online Forensic Evidence Extractor (Cofee) USB device that the company began distributing to law enforcement agencies in 2007.

Cofee is designed to offer police and other agencies a way of collecting digital evidence, decrypting passwords and analysing computer and web surfing activity.

The assurances came after reports claiming that Cofee could provide a 'back door' into Microsoft operating systems and applications.

In its Gartner briefing, however, Microsoft stated that Cofee offers nothing more sinister than a set of scripts designed to help law enforcement professionals take a system snapshot.

Microsoft claimed that the commands held on the USB stick are all public, and that no new code has been written and no back doors are present.

"Gartner believes, and Microsoft agrees, that it was a mistake to widely deploy the Cofee initiative without public disclosure and a formal distribution plan," said John Girard, a vice president and distinguished analyst at Gartner.

"We also believe that Microsoft should work closely with professional third-party forensics product and service vendors to develop, manage and track future data capture utility projects.

"Another concern raised by Microsoft's failure to offer public information about this initiative is that the widespread attention it has drawn will likely encourage otherwise well-intentioned enterprise IT personnel to search the internet for penetration tools with which to experiment.

"Enterprises should review their internal protection measures to ensure that their business data is secure and private."

See also:

Microsoft
Microsoft preps four security patches
Three 'critical' fixes expected in monthly update  09 May 2008
Microsoft
Microsoft seeks a few good geeks
Last few places left in UK Challenge  08 May 2008
Microsoft
Windows XP SP3 hits the web
Service Pack 3 reaches automatic update  07 May 2008

All Enterprise Security Technology
Tags: Microsoft

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
R&D Biotechnology C++ Developer
| Aston Carter
C++ Research Developer Global Pharmaceutical Company London C++ Research Developer Biotechology Global Medical Company London Global Biotechnology Company specialising in the research and development of cutting edge health care products is looking for an innovative, ... more >
C++ Developer, Unix, FX Algo Trading, London
| Aston Carter
Your role will be working on direct market access and exchange connectivity part of the application built in C++ on a Unix platform. The team is currently just 9 people including architect and team lead, ... more >
Java Analyst Developer, Agile, Greenfield development, London
| Aston Carter
This is a fantastic opportunity working for a leading global software house, which is part of a larger multi media company. The role is working in the core development team in central London developing a ... more >
C++, Developer, OO, Unix/NT, API, London, City, Graduate
| Aston Carter
C++, Developer, OO, Unix/NT, API, London, City, Graduate A senior core C++/ Unix developer wanting to work in the heart of the city for one of London's most successful companies is required. The successful candidate ... more >
More job opportunities

Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site . Accessibility
Consumer Technology websites:
Active Home Product reviews, competitions, news
Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads
Gizmodo the daily gadget blog: technology news and reviews
PC Magazine your personal guide to technology
PCW software product reviews, hardware product reviews, buyers' guides, competitions
WebAct!ve what's happening on the web
What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more
Blogs:
Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP % Vista news
Jobs & Recruitment websites:
Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Top IT Employers 2005
Inquirer Jobs Software Engineer Jobs, firmware developer jobs, electronics engineer jobs
Other titles in the Incisive Media network:
Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . vnunet.com
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy
© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503