Barney's Blog

Blog archive

Microsoft Cozies Up Even More to Adobe

Microsoft and Adobe have become so close of late, I'm wondering if an acquisition may be in order (that would be Redmond buying Adobe, not vice versa).

Adobe is using a Microsoft-built sandbox to protect PDFs, and Adobe patches will be part of Redmond's Patch Tuesday.

Microsoft is taking this a step further by distributing Adobe vulnerability information through the Microsoft Active Protections Program (MAPP).

MAPP gives software vendor info on exploit flaws before they are patched, giving Microsoft partners a head start on closing their own holes.

Posted by Doug Barney on 08/02/2010 at 10:08 AM


Reader Comments:

Tue, Aug 3, 2010 Wiebke Lips, Sr. Mgr. Corp. Communications Adobe Systems Incorporated, San Jose, CA

There is no reason to spend time wondering about this one.

Security is an industry concern and not one that is limited to a select group of vendors or products. A shared sense of responsibility ecosystem-wide is required as no one company, individual or technology alone can solve today’s complex security challenges. It is critical that vendors and the security community at large partner and work together to try and stay ahead of the game and combat those with malicious intent. Adobe and Microsoft working together on security issues to defend against the criminal element is just that: vendors coming together and exercising a shared sense of responsibility to protect our mutual customers.

Also, you are suggesting that Adobe security updates would be part of Microsoft’s Patch Tuesday. Let’s be clear: Adobe Reader and Acrobat currently follow a quarterly patch cycle that coincides with Microsoft’s Patch Tuesday. Adobe security updates are NOT being released as part of Microsoft’s Patch Tuesday security updates. What Adobe and Microsoft did announce is a collaboration to further accelerate industry protection by sharing Adobe vulnerability information with Microsoft Active Protections Program (MAPP) members. Rather than reinventing the wheel, we determined that it made more sense to leverage the work and program already in place with MAPP. MAPP is a great example of a tried and proven model giving an upper hand to a network of global defenders who all rally behind a shared purpose: protecting our mutual customers.

That said, we can confidently put the rumors and speculation to rest.

Mon, Aug 2, 2010

What is your "source" regarding MSFT releasing Adobe patches? That would imply we could patch Reader and Acrobat through WSUS, SC, etc. That's not been reported anywhere else. Being part of MAPP doesn't mean MSFT will distribute your patches, it means you have access to MSFT's patches before the general public (to ensure they don't break your stuff).

Add Your Comment Now:

Your Name:(optional)
Your Email:(optional)
Your Location:(optional)
Comment:
Please type the letters/numbers you see above

> More

> More

> More Tech Library