Modernizing Authentication — What It Takes to Transform Secure Access
According to people familiar with the matter, beta testers running games on 64-bit systems reported problems with the hardware-enforced data execute protection (also known as NX, or no execute) which is built into SP2 to thwart buffer overflow attack scenarios.
NX uses the CPU to mark all memory locations in an application as non-executable unless the location explicitly contains executable code and is seen as a crucial part of the service pack to guard against Blaster-like virus attacks that have hammered corporate networks in the past.
Microsoft product manager Tony Goodhew confirmed the NX protection feature was causing problems for users running SP2 on 64-bit hardware.
During TechEd technological sessions Monday, the security-focused goodies in XP SP2 dominated the discussions, with Microsoft providing an in-depth look at client enhancements provided by the OS update.
The software giant also moved closer to a full release of Windows Update V5, which features major improvements to the automatic updating and patching process. A release candidate 2 of the newest Windows Update also adds a new feature to resume interrupted downloads and a streamlined user interface.
Microsoft officials believe the last minute SP2 kinks can be worked out in time for an RC2 release ''no later than next week'' and a release to manufacturing launch by the end of July.
As previously reported XP SP2 will introduce technologies for network protection, memory protection, e-mail handling, secure browsing and PC maintenance. It also features a brand-new Windows Security Center that allows the monitoring of firewalls, Automatic Update and third-party anti-virus software and warns customers about the need to apply patches.
Microsoft also used the TechEd spotlight to release a Platform SDK for SP2 to allow developers to build and test pre-release applications.
During his opening keynote on Monday, Microsoft CEO Steve Ballmer talked up the coming service pack as an example of the company's commitment to security as its number one priority.
''Look, job one at Microsoft is security,'' Ballmer said. ''You can trust from me, from the top of our company, security is job one. The issues that you've been having keeping these systems up in production through the attacks by these malicious hackers is really unacceptable.''