The Netscaping of Symantec and McAfee

By Robert Vamosi on 20 October 2006

Symantec and McAfee have looked into the future and don't want to become the next Netscapes.

In 1994 there was one very good Internet browser: Netscape. Created by several members of the team who gave us Mosaic, one of the first browsers, Netscape was immediately successful as a commercial enterprise. Microsoft, realising late that it had failed to seize upon this thing called the Internet, hastily created the Internet Explorer browser and began bundling it with later editions of Windows 95 and, subsequently, with all versions of Windows. Steadily, Internet Explorer came out of nowhere to dominate the browser landscape. It did so not through innovation but by recognising that people are lazy: IE came bundled within the OS, so no downloading was required. And as organisations worldwide adopted Windows 98 for the office, workers grew used to seeing internal Web sites developed for IE, and people simply started using IE at home. (OK, there are many more reasons why IE ultimately beat Netscape, but bear with me ... )

I mention Netscape because, if you believe Symantec and McAfee, a similar situation is about to unfold within the security industry. Microsoft, again recognising late that it had failed to seize upon this thing called security, is now about to bundle its own security solutions within Windows Vista and further enforce new security policies that lock out some third-party security solutions altogether. Vendors Symantec and McAfee have looked into the future and realised that people may one day speak of them in the way that we now speak reverently of the early builds of Netscape. This time, history is on their side; court cases and commissions have found Microsoft guilty of antitrust violations, and the security vendors are now using these to argue their point. Unfortunately for Symantec and McAfee, time may have already run out; Microsoft is ready to ship Vista to manufacturers within the next few weeks.

Petitioning the EU
In recent weeks, vendors Symantec and McAfee have gone public with what they've been saying in private for months: that Microsoft deliberately withheld information about its new security features to put the vendors at a disadvantage. In a recent full-page ad in the Financial Times, McAfee laid out its specific complaints. Last week, representatives of both Symantec and McAfee were in Europe to argue their cases in person.

In recent weeks, vendors Symantec and McAfee have gone public with what they've been saying in private for months: that Microsoft deliberately withheld information about its new security features to put the vendors at a disadvantage.

Why Europe? The historic US antitrust decision against Microsoft in 2000 was largely watered down by a 2004 Justice Department final settlement that did not break up the company (as originally requested) but did ask that Microsoft make the APIs (Application Programming Interface) for its Internet Explorer browser available to rivals. By then, Netscape had already been sold to AOL and its team of programmers more or less gutted.

Thus, the EU is perceived to be a much friendlier environment for security vendors. In Europe now, Microsoft is battling the EU commission empowered to monitor the company's current activities. The EU commission says that Microsoft needs to address some 79 questions the commission has regarding Windows Vista, but Microsoft claims it needs more specifics from the commission before it can answer -- likely a stalling tactic. The EU has already slapped Microsoft with a US$375 million fine for not following its historic 2004 antitrust ruling regarding Windows XP. Symantec and McAfee are hoping that the EU sides with them on Windows Vista.

Windows Defender
As recently as last week, McAfee and Symantec said that they haven't received the APIs for Windows Defender, Microsoft's free antispyware application. At issue here is whether Symantec and McAfee can turn off Windows Defender in favour of their own antispyware technology. I don't really see a problem here because, while there is no agreement among the security vendors as to what is and is not spyware, I recommend having at least two antispyware applications running on your PC, one being the free version of Windows Defender. But the issue is larger than this single application.

Symantec privately alleges that Microsoft is withholding API information to delay its own Release to Manufacture versions of their software. If Microsoft ships Vista code to hardware vendors at the end of November, then Symantec and others must have their own Vista-ready security products ready to ship to their OEM hardware vendors at the same time. Without the APIs, that's impossible.

Security Center
The core issue, however, is over which security center should dominate your PC. Currently, Windows XP provides its one-stop Security Center for configuring your Windows Updates, antivirus, firewall, and antispyware, informing you in a pop-up message or a taskbar icon if one or more of these has been disabled or is out of date. Symantec and McAfee also offer users a snapshot security status, but the end user doesn't have much control over whose messages are dominant. Thus, in the lower-right corner of your screen, you're likely to see messages from the security centers of both Windows and a third party. To a novice, this information overload could be very confusing.

Symantec and McAfee are hoping that the EU sides with them on Windows Vista.

McAfee and Symantec are asking Microsoft to allow users (and, more importantly, the lucrative OEM hardware manufacturers) the ability to disable the Microsoft Security Center and run third-party security centers instead. That sounds reasonable, except Microsoft isn't playing; turning off the Microsoft security undermines the new security model within Vista that locks down and enforces security throughout the new OS.

PatchGuard
McAfee and Symantec are also upset about PatchGuard, a Microsoft technology that locks the Windows system kernel to all outside vendors. The arguments regarding PatchGuard are about the future; today most people don't have the x64 machines that take advantage of the technology, but when they do, security vendors want to be a part. Down the road, new computers will be 64-bit, and Vista is already designed to run on this new hardware. Microsoft claims that by locking the kernel to outside vendors, it'll eliminate most of the causes of the Blue Screen of Death, as well as prevent rootkits from installing. Unfortunately, it'll also eliminate most third-party firewalls.

Current firewall technology involves hooking the NDIS (Network Driver Interface Specification), which exists only in the system kernel. Even with the advance notice (vendors have known about PatchGuard for a while; it's within the Windows XP x64 edition, for example), it's too late for firewall vendors to create a new methodology, but Microsoft is adamant in not allowing third parties inside the x64 kernel.

Funny thing is, I watched a standing room-only demonstration at this year's Black Hat where security researcher Joanna Rutkowska was able to hack the kernel of a 64-bit version of Vista running on an AMD processor. So I don't see why Microsoft should lock out security vendors when a diligent hacker can find methods such as the one that Rutkowska used to subvert the Microsoft kernel.

Why only Symantec and McAfee?
Although the headlines read Symantec and McAfee, you could easily substitute your personal favourite security vendor instead. The issues mentioned above affect almost all third-party security vendors. The reality is, most security vendors can't afford to mount a long, sustained fight against the giant that is Microsoft; McAfee and Symantec have those resources. That said, neither McAfee or Symantec has filed for a formal decision against Microsoft, nor has either company broken off talks with the software giant.

Presently all signs point to Microsoft having a Release to Manufacture edition of Vista available by the end of November; if that happens, we'll then see a retail product on store shelves at the end of January 2007. The only wrinkle might come if Symantec and McAfee somehow manage to hold things up for Europe (and Europe only) where the European commission could block the release of Vista. Personally, I don't think the EU will block Vista's release.

Are security vendors really threatened with extinction because of Microsoft Windows Vista, or is this some big marketing push to get Symantec and McAfee in the news? Talk back below.

Topics: netscaping, netscape, ie, internet explorer, browser, mcafee, symantec, microsoft, vendor

Related Articles

Comments (56)

  • mark-o commented on 26/01/2007 15:02 Report abuse

    The comments re: Netscape and why they ultimately failed need to be corrected. The facts and the updated facts and researched facts are not in fact factual. There are other comments presented here that are incorrect, so I say reader beware.

    Netscape sold a browser for between $20-30 a copy, that is what paid the programmers salaries. Once Microsoft embedded IE in the O/S and gave all copies away for free Netscape lost market share even though at the time NS was better. Users laziness and IE being embedded in the O/S eventually evened out market share and when Netscape started giving the browser away for free to compete they had no O/S or Office revenue to rely on. No money = no salaries = no programmers = no improvements. By the time AOL bought the rights it was all but a shell.

    Sure count on MS for security. Like their free anti-spyware, oh sorry they charge now, or how about $99 Office suite, oh sorry $400 now. Remember Lotus 1-2-3, how about Wordperfect? Thought not. This is another example of MS squeeze tactics.

  • maxomax commented on 19/01/2007 11:57 Report abuse

    Microsoft has a stated goal of eventually charging a subscription fee for their security offerings. In earlier times this would have been called an extortion racket. They are planning to charge you money to protect you from the bugs that their programmers have introduced. There is no monetary reward for fixing the bugs. The monetary reward comes from creating even more bugs to force you to buy the subscription. This also could be called 'conflict of interest'.

  • Harry commented on 10/01/2007 17:40 Report abuse

    I do not trust MS one bit, esp since myME/IE experience. They have consumer/competitor where they want him. My new e/Gateway computer came w/preloaded Macfee and I RESENT THE FACT. Its now "woven into the computer's digital fabric." Do not feel for junk peddler Mcafee who, with Symantec now, can (not that they would) attempt to pull the same credit card "pre-load & autopay" Consumer FRAUD that finally, AOL was fined for, in court , in two states. ( AOL fraudulently kept charging consumer's credit card FOR SERVICES NOT WANTED OR RENDERED and making it impossble, for hundreds of users, (see INTERNET /www.askASKDAVE TAYLOR.com/77 pages long ) to cancel AOL service/sever credit card charges or reclaim private data.) Expect no help from VISA. WATCH. (My two Mcafee suites 5&6 could not be made functional w/ME, by online support services ( phone support only at steamboat prices.) They old me to register by ....postcard. Solution, ZONE ALARM..et al. But, today, after buying a ZA CD, I learn that if Mcafee is loaded, ZA says do not attempt to load ZA. So did AOL. Sound like a familiar MS exclusion software stunt??

  • Manecas commented on 16/11/2006 06:45 Report abuse

    I really don`t trust any of the security software within Xp alone.... You only need to see the number of security flaws found over the past 2 years since the release of Service Pack 2 and it`s all said... Almost 100....
    One other thing is that symantec and Mcafee for me just want publicity out of this and don`t want to spend some money developing their softwares because we all know they haven`t made big changes since like 2005...
    There are already some softwares from like trend micro that do protect win Vista (Pc-cillin 2007 for Vista), (there are others but they`re still working on it) so if they say they can`t do it, it`s because they are lasy and want to make Microsoft change their kernel so they don`t have to work there asses too much....
    Concluding: I`m not on Microsofts side because we all know we can`t trust there security softwares, but neither am I on Sym or Mcafee side because they need to stop being lasy....
    My solution is between keeping the Xp or if you really want the Vista OS then open your horizons and look for other security suites such as Trend Micro and Avast and ISS....

  • TS commented on 25/10/2006 12:15 Report abuse

    If Microsoft’s true intent is to block antivirus venders, they will make the adoption to Vista extremely slow for businesses most of which use enterprise versions of an Antivirus suits. Unless Microsoft is set to compete on the enterprise scale for virus solutions, I think they should share the information with the security vendors to help the proliferation of their OS and to continue current interoperability with current solutions. Even if this will only effect the security center applet, Microsoft should allow the application to be disabled in favor of more a more preferred solution. It’s competition. Competition keeps businesses thriving

  • Ananymous commented on 25/10/2006 11:35 Report abuse

    I can't understand those who talk about not trusting MS in securing their PCs but want to use their OS...i mean why? if you don't trust MS-OS so don't use it in first place .... and about Linux and MAC OS.....You think its so hard to hack these machines ....their entire source code is out there on the web and people just don't wanna spend time going around hacking these systems since a very population uses it......

  • Chris Bradley commented on 25/10/2006 06:04 Report abuse

    Netscape failed because they wanted to charge ISPs *thousands* of dollars in order to distribute their browser. As the GM for an ISP in Kentucky, I remember how much we hated Netscape for that. As a result, we recommended all our customers switch to IE instead of Netscape.

    Netscape deserved to go out of business through their asinine licensing model for ISPs.

  • Daniel Simpson commented on 24/10/2006 23:18 Report abuse

    I might be if Microswipe actually implemented the 'borrowed' features in an efficient manner. Although there is one thing that Microswipe does that no other software vendors (that I know of) do. They ignore accepted standards and implement protocols in a way incompatible with other products.

  • gfj commented on 24/10/2006 20:00 Report abuse

    to Daniel Simpson you should be happy more than sad that all these 'copied features' are all together in a world widley used OS

  • Kris commented on 24/10/2006 19:30 Report abuse

    I just bought a new Dell PC that came with McAfee pre-installed despite me selecting the "no preinstalled security package" option when I customized it. It took me two days to get rid of it because the McAfee uninstaller refused to uninstall their garbage, and in the end I had to manually clean it out.

    McAfee don't give customers the choice to easily remove their piece of crap from systems where it come pre-installed, so don't throw glass in a rock-house, McAfee...

    It has already been pointed out that netscape died because it was a crappy piece of software, and that netscape themselves made stupid business decisions that killed their browser, so I won't go there.

Post your own comment

You must read and type the 6 chars within 0..9 and A..F

You must read and type the 6 chars within 0..9 & A..F

Submit

Enter your personal information to the left, or sign in with your Facebook account by clicking the button below.

Connect

The Explain Series

Must read