Feeds

Gates plans invisible, automatic updates for WinXP users

Worried? No, we're not worried. Why do you ask?

  • alert
  • submit to reddit

Combat fraud and increase customer satisfaction

Most of the reporting of Bill Gates' WinHEC keynote on Monday has focussed on the Tablet PC announcement, but you'd also do well to take a look at what he had to say about Windows Update. In WinXP it's back, it's bigger than ever, and this time, maybe, resistance is futile.

Bill says: "One of the key elements for us is Windows Update. We've decided that we're going to have all defined drivers on the Windows Update site. And we're making Windows Update something that's invisibly easy for the user to go up and get the latest improvements." Here he's talking about a signed driver regime where Microsoft tests and approves vendor-produced drivers, and aside from them going out with the hardware, they get posted in the giant driver pile that Microsoft intends to morph Windows Update into.

Aside from drivers, Gates sees this Revenge of Windows Update as hosting all "the latest improvements... patches, new drivers, whatever it is, that's part of the PC experience." And of itself that's cool, if you think of it as a giant store where it's easy for you to get any kind of tool, wrench or widget you're going to need, and where all of this stuff has been thoroughly checked, and is of the highest quality.

But personally, I'd be a lot happier about this if the storekeeper didn't have those funny eyes. Microsoft's first take on Windows Update sent quite a few corporate IT people ballistic, and also dragged forced registration in as well. People who wanted to install service packs on multiple machines weren't best-pleased about having to do it online to Update, one machine at a time, and there was a period where Microsoft seemed to be deliberately choking off availability of downloadable or CD delivered service packs. Which is how my doppelganger, William H Spam III, came to be a registered user of Office 97, but that's another story.

Microsoft eased up considerably on that particular approach in Windows Update 1, but Bill's description of Windows Update 2 sounds awfully like more of the same. And the Windows XP beta code has visit Windows Update nagware in it that seems to pop up at every reboot, without giving you any obvious mechanism for telling it to go away, and not to come back.

So in Microsoft's ideal world the storekeeper with the funny eyes (obviously Microsoft doesn't think of itself in quite those terms) gets practically all XP users to sign up at the Update site. The storekeeper and his little elves then get to decide what drivers and updates are good for you, and they set them up so they install invisibly, without your even being bothered by them (although this presumably will have a lot to do with where the defaults are set in the shipping code).

This still won't play in the business world, where IT managers still won't be wanting their users installing (or having installed on them, without them knowing) stuff they haven't approved and decided to roll out themselves. So there'll still have to be some kind of escape hatch for them. From the home user's perspective too there's a certain amount of sense in making sure the updates aren't too invisible and too automagical, but Microsoft likely won't agree. Microsoft has been known to roll out service packs that break the software worse rather than fixing it. You might also want to maintain some control over which of the things you thought were apps decide to turn themselves into a part of the operating system.

Basically, you have to ask yourself if you think the storekeeper is a fit and proper person to be making these decisions for you. He has a long history of thinking he knows best what's good for you, and he has all sorts of other motivations that you might not agree with. He did say quite recently that he'd be using a signed driver system with a regularly updated revocation list to stop you copying digital music you didn't own, and by making himself custodian and approver of the hardware drivers, he might somehow also find himself relating this to the hardware mods he's planning in the future Secure PC.

All of these things and more, registrations, passports, product activation might end up in separate boxes that don't exchange data with one another, but the storekeeper is a serial control-freak, so how sure can you be about that? ®

More reasons to worry

MS plans 'Secure PC' that won't copy pirated audio files
Welcome to .NET - how MS plans to dominate digital music sales
Whistler to include 'block all unsigned apps' security mode

3 Big data security analytics techniques

More from The Register

next story
Ubuntu 14.04 LTS: Great changes, but sssh don't mention the...
Why HELLO Amazon! You weren't here last time
This time it's 'Personal': new Office 365 sub covers just two devices
Redmond also brings Office into Google's back yard
Next Windows obsolescence panic is 450 days from … NOW!
The clock is ticking louder for Windows Server 2003 R2 users
Half of Twitter's 'active users' are SILENT STALKERS
Nearly 50% have NEVER tweeted a word
OpenBSD founder wants to bin buggy OpenSSL library, launches fork
One Heartbleed vuln was too many for Theo de Raadt
Got Windows 8.1 Update yet? Get ready for YET ANOTHER ONE – rumor
Leaker claims big release due this fall as Microsoft herds us into the CLOUD
Batten down the hatches, Ubuntu 14.04 LTS due in TWO DAYS
Admins dab straining server brows in advance of Trusty Tahr's long-term support landing
Red Hat to ship RHEL 7 release candidate with a taste of container tech
Grab 'near-final' version of next Enterprise Linux next week
Apple inaugurates free OS X beta program for world+dog
Prerelease software now open to anyone, not just developers – as long as you keep quiet
prev story

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.