Microsoft's emphasis on improvements to security features in Windows Vista may have undermined business adoption of the OS, as many business and enterprise customers are still holding off on upgrading to the OS nearly a year after its release to them.

Microsoft spent a good deal of time and money to ensure Vista's security after Windows XP and applications running on it proved susceptible to devastating worms like Blaster, Slammer and MyDoom. Though Microsoft released Windows XP Service Pack 2 to remedy some vulnerabilities, the company decided that security would be a top priority for the next major Windows release, said George Stathakopoulos, general manager of Microsoft’s Response and Product Centers.

"The security part of Vista was talked about a lot because it was a primary concern all over the world," he said.

But in retrospect, those close to the company and even Microsoft have acknowledged recently that security has not proved to be important enough to encourage businesses to upgrade to Vista.

Robert Hansen, CEO of IT security consultancy SecTheory LLC in Austin, Texas, who has spoken at Microsoft's Blue Hat hacker conference and done contract work for the company, said Microsoft is aware that its laser focus on Vista security may have been a misstep, and that it is trying to remedy that.

He said that Microsoft staffers are pleased in general with Vista's security improvements, but they acknowledge that "the consumer reaction was ho-hum."

"Over the next year, although security is definitely top of mind, some people feel as if the security as a priority is going to shift downwards, as opposed to feature enhancements," Hansen said.

Hansen also said that Microsoft traded general OS usability to add some of Vista's security features, such as User Account Control (UAC), and is "feeling pressure from Apple" to provide a more intuitive and user-friendly OS.

UAC gives system administrators more control over what features business users can access. It has become a chief complaint with users because it interrupts a PC user's work with a pop-up window whenever they're about to do something the feature considers an administrative function. UAC can be bypassed by working in administrator mode instead of standard user mode, but this defeats the purpose of the added security the feature was supposed to bring to the OS.

The IDG News Service is a Network World affiliate.

Whitepapers

• The Trend from UNIX to Linux in SAP(r) Data Centers
• Secure Wireless Printing Options
• Improve Virtual Storage TCO by Comparing Vendors
• Making IT Invisible
• Best Practices for VMware ESX Server
• Virtualizing Storage for VMware Success

View more DATA CENTER whitepapers

Webcasts

• Branch Office Trends and Best Practices
• Best Practices for Deploying WAN Optimization for Disaster Recovery
• Tips and Techniques for Remote Data Backup and Delivery
• WAN Optimization Landscape
• Oracle Database 11g: Advances in Compression, Real Application Testing and Data Guard
• Solutions to the Toughest IT Challenges in Remote Offices

View more DATA CENTER webcasts

Special Reports

• Executive Guide: Storage Heats Up
• Data Centers: At the center of the action
• Executive Guide: Virtualization Reality Check
• Executive Guide: Data Center Decisions
• Get More From Your WAN
• Network World Executive Guide: Perfecting Application Performance Management

View more DATA CENTER special reports