Browse by Tags

IEBlog

Internet Explorer Team Blog
  • Blog Post: IE8 Security Part V: Comprehensive Protection

    Hi! I’m Eric Lawrence, Security Program Manager for Internet Explorer. Last Tuesday, Dean wrote about our principles for delivering a trustworthy browser ; today, I’m excited to share with you details on the significant investments we’ve made in Security for Internet Explorer 8. As you might guess from...
  • Blog Post: IE8 Security Part IV: The XSS Filter

    Hi, I'm David Ross, Security Software Engineer on the SWI team. I’m proud to be doing this guest post on the IE blog today to show off some of the collaborative work SWI is doing with the Internet Explorer team. Today we are releasing some details on a new IE8 feature that makes reflected / “Type...
  • Blog Post: IE8 Security Part III: SmartScreen® Filter

    As someone whose email address is posted in thousands of forum posts, newsgroup discussions, and blogs, I get a lot of spam. Of the spam I receive, a significant number of messages represent phishing attacks . Most of these lures aren’t very clever or convincing, but phishing has become a simple numbers...
  • Blog Post: IE8 and Trustworthy Browsing

    This blog post frames our approach in IE8 for delivering trustworthy browsing. The topic is complicated enough that some context and even history (before we go into any particular feature) is important, and so some readers may find this post a bit basic as it’s written for a wide audience. In previous...
  • Blog Post: IE8 Beta 1 June Security Update Now Available on Windows Update

    Today we released the IE June Cumulative Security Update for Internet Explorer 8 Beta 1 for Developers on Windows Update . For detailed information on the contents of this update, please see the following documentation: IE Blog Post: IE June Security Update Now Available Microsoft Knowledge...
  • Blog Post: Securing Cross Site XMLHttpRequest

    As I mentioned in my post on Cross Document Messaging , client side cross domain request is an important area of interest for AJAX developers looking for ways to avoid expensive server side proxying calls. While Cross Document Messaging is useful for allowing third party components or gadgets embedded...
  • Blog Post: IE June Security Update Now Available

    The IE Cumulative Security Update for June 2008 is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates via the new Microsoft Update . I encourage you to upgrade to Microsoft Update if you haven’t already to ensure that you receive the latest updates...
  • Blog Post: ECMAScript Security

    Related to the IE Blog post around mashups in Internet Explorer 8, the Jscript team has a great post on ECMAScript, Security and Mashups over on their blog. Check it out! Kristen Kibble IE Program Manger
  • Blog Post: Enabling Mashups in Internet Explorer 8 with Cross Document Messaging

    Hello, I’m Sunava Dutta and I’m the Program Manager focused on improving our AJAX scenarios in IE8. In this short post I’ll introduce you to a feature we’re implementing in the browser that enables safer mashups. The Same Origin Policy (SOP) requires that browsers prevent script from accessing the contents...
  • Blog Post: IE8 Security Part II: ActiveX Improvements

    Hi, I’m Matt Crowley, Program Manager for Extensibility with Internet Explorer. The team was very excited to be at the RSA security conference last month discussing the security features of Internet Explorer 8 Beta 1. In this, the second part of the IE8 Security blog series, I describe the ActiveX improvements...
  • Blog Post: IE April Security is Now Available

    The IE Cumulative Security Update for April 2008 is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates via the new Microsoft Update . I encourage you to upgrade to Microsoft Update if you haven’t already to ensure that you receive the latest updates...
  • Blog Post: IE8 Security Part I: DEP/NX Memory Protection

    Hi, I’m Eric Lawrence from the Internet Explorer Security Team. With the RSA security conference kicking off this week, I wanted to start sharing more information about the security features and benefits of Internet Explorer 8 Beta 1. Over the next several weeks, we’ll blog in greater detail about some...
  • Blog Post: IE February Security Update is Now Available

    The IE Cumulative Security Update for February 2008 is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates via the new Microsoft Update . I encourage you to upgrade to Microsoft Update if you haven’t already to ensure that you receive the latest updates...
  • Blog Post: Using Frames More Securely

    HTML frames (FRAMESETs and IFRAMEs) are a feature of all modern web browsers that enable content from multiple pages to be displayed within a single view. Historically, frames were primarily used to enable partial page updates, where page navigation was contained in one frame, and page content was contained...
  • Blog Post: Post Install Issues with MS07-069 (IE6 on XPSP2)

    After downloading the Internet Explorer Cumulative Security Update for December 2007, some customers using IE6 on Windows XP Service Pack 2 have experienced an unexpected crash or hang upon launching Internet Explorer. This might occur while navigating to a website hosting considerable media content...
  • Blog Post: IE December Security Update is Now Available

    The IE Cumulative Security Update for December 2007 is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates via the new Microsoft Update . I encourage you to upgrade to Microsoft Update if you haven’t already to ensure that you receive the latest updates...
  • Blog Post: IE October Security Update is Now Available

    The IE Cumulative Security Update for October 2007 is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates via the new Microsoft Update . I encourage you to upgrade to Microsoft Update if you haven’t already to ensure that you receive the latest updates...
  • Blog Post: Developing Safer ActiveX Controls Using the Sitelock Template

    Last Friday, Microsoft released a new version of the SiteLock Template for ActiveX Controls . The SiteLock template helps ensure that controls you’ve developed for use on your websites cannot be repurposed and used by other (potentially malicious) websites. Why use the SiteLock template? Under the...
  • Blog Post: IE August Security Update is Now Available

    The IE Cumulative Security Update for August 2007 is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates via the new Microsoft Update . I encourage you to upgrade to Microsoft Update if you haven’t already to ensure that you receive the latest updates...
  • Blog Post: Good Practices for ActiveX Updates

    One of the most important activities we do in the software industry is service our customers through software updates. Like any other binary software, ActiveX controls often need to be updated with bug fixes and new functionality. So what is the best way to get updates to our customers? Steve, from...
  • Blog Post: New Training and Whitepaper on Internet Explorer 7 Security Now Available

    A while ago I talked about Internet Explorer sessions we were giving at Tech-Ed 2007 . And while it was a great pleasure for me to see many of you there, not everyone could make it to Tech-Ed. Working with TechNet’s IT Showtime, we’ve made my presentation Windows Internet Explorer 7 Security In-Depth...
  • Blog Post: Enriching the Web Safely: How to Create Application Protocol Handlers

    Over the past few days, we’ve gotten several questions from customers about how you can invoke third-party applications on Windows by specially-crafted URLs that invoke Application URL protocol handlers (Firefox’s “firefoxurl:” has been the most discussed example). I wanted to provide some additional...
  • Blog Post: Extended Validation Guidelines v1 Released!

    I’ve talked several times in the past about Extended Validation SSL certificates and how they are a great step forward in establishing verified identity for websites. It is therefore with great pleasure that I am writing today about the official ratification of the EV Guidelines v1.0 by the Certification...
  • Blog Post: IE June Security Update is Now Available

    The IE Cumulative Security Update for June 2007 is now available via Windows Update . Alternatively, you can receive this and all other Microsoft updates via the new Microsoft Update . I encourage you to upgrade to Microsoft Update if you haven’t already to ensure that you receive the latest updates...
  • Blog Post: Follow Up to Internet Explorer May 2007 Security Update

    After downloading the Internet Explorer Cumulative Security Update for May 2007, some users have experienced an unexpected “Save File” security dialog upon launching Internet Explorer. This might occur when the “Temporary Internet Files” folder is moved to a custom location and Internet Explorer does...
Page 5 of 8 (176 items) «34567»