Microsoft
Microsoft's Cofee is designed to offer police and other agencies a way of collecting digital evidence
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Microsoft Cofee brews 'back door' fears

Gartner welcomes assurances that legal agencies cannot access Microsoft code

Robert Jaques, vnunet.com 09 May 2008
ADVERTISEMENT

Industry experts have welcomed assurances from Microsoft that the firm has not provided law enforcement agencies with a 'back door' into its systems.

Microsoft briefed Gartner on 2 May about its Computer Online Forensic Evidence Extractor (Cofee) USB device that the company began distributing to law enforcement agencies in 2007.

Cofee is designed to offer police and other agencies a way of collecting digital evidence, decrypting passwords and analysing computer and web surfing activity.

The assurances came after reports claiming that Cofee could provide a 'back door' into Microsoft operating systems and applications.

In its Gartner briefing, however, Microsoft stated that Cofee offers nothing more sinister than a set of scripts designed to help law enforcement professionals take a system snapshot.

Microsoft claimed that the commands held on the USB stick are all public, and that no new code has been written and no back doors are present.

"Gartner believes, and Microsoft agrees, that it was a mistake to widely deploy the Cofee initiative without public disclosure and a formal distribution plan," said John Girard, a vice president and distinguished analyst at Gartner.

"We also believe that Microsoft should work closely with professional third-party forensics product and service vendors to develop, manage and track future data capture utility projects.

"Another concern raised by Microsoft's failure to offer public information about this initiative is that the widespread attention it has drawn will likely encourage otherwise well-intentioned enterprise IT personnel to search the internet for penetration tools with which to experiment.

"Enterprises should review their internal protection measures to ensure that their business data is secure and private."

See also:

Microsoft
Microsoft preps four security patches
Three 'critical' fixes expected in monthly update  09 May 2008
Microsoft
Microsoft seeks a few good geeks
Last few places left in UK Challenge  08 May 2008
Microsoft
Windows XP SP3 hits the web
Service Pack 3 reaches automatic update  07 May 2008

All Enterprise Security Technology
Tags: Microsoft

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
A range of Technology roles at MI6 Including Applications,Technical Support, Enterprise Architecture
London, United Kingdom | MI6
A range of Technology roles at MI6 Including Applications, Technical Support, Enterprise Architecture & Helpdesk, London We're the Secret Intelligence Service. You may know us as MI6. Information is at the heart of everything we ... more >
Solution Architect
Bristol, United Kingdom | Environment Agency
Solution Architect, Bristol, Salary and Package to attract the best These positions require highly skilled Solution Architects with demonstrable experience of working within a complex enterprise project environment. Working within the Business Solutions Team you ... more >
Database Administrator
London, Waterloo, United Kingdom | Christian Aid
Database Administrator, London, Waterloo, Starting at £34,858 and progressing to £38,983 per annum We are seeking an experienced Database Administrator to be responsible for the implementation, availability, performance and security of all Christian Aid database ... more >
IT Director
Ross-on-Wye or Blackpool, United Kingdom | PGL & NST
IT Director, Ross-on-Wye or Blackpool, C£80,000 Holidaybreak Plc Education Division comprises market leading educational holiday's operator PGL and educational tours organiser NST. It is a £100m business employing over 3,000 staff across 2 head office ... more >
More job opportunities

Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site . Accessibility
Consumer Technology websites:
Active Home Product reviews, competitions, news
Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads
Gizmodo the daily gadget blog: technology news and reviews
PC Magazine your personal guide to technology
PCW software product reviews, hardware product reviews, buyers' guides, competitions
WebAct!ve what's happening on the web
What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more
Blogs:
Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP % Vista news
Jobs & Recruitment websites:
Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Top IT Employers 2005
Inquirer Jobs Software Engineer Jobs, firmware developer jobs, electronics engineer jobs
Other titles in the Incisive Media network:
Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . IT Week . vnunet.com
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy
© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503