Page 2By Peter Galli | Posted 2006-10-05 Email Print
Many enterprises will not be allowed to use the new tools until they are available for existing production servers like Windows Server 2003, which isn't expected until some six months after Vista is released.
Most corporations appear to be preparing for a 2008 rollout of Vista, and by then all tools should be fully tested and running on the appropriate platforms. As such, Enderle does not expect the delay in releasing the tool for existing production servers to have much impact on 2008 deployment plans.
"We think the impact of this on existing 2008 plans will be negligible, and early adopters, by nature, are more willing to take higher risks for the benefits of a new platform, and this shouldn't change that either," he said.
As such, Enderle said demand from small and medium-size businesses and consumers in 2007 will likely give the first indication of whether Vista "is hot or not." But, that being said, he still expects the big Vista and Longhorn Server deployment wave to come in 2008 and 2009.
A Vista tester who asked not to be named, told eWEEK that the delay in the tools is probably a good thing as it will give Microsoft time to work on the first service pack.
"Perhaps the delay is by design to give them time to get the code up to scratch and fix all the early issues that will undoubtedly show up once Vista starts being deployed," he said.
But both Enderle and Roger Kay, president of research group Endpoint Technologies Associates, expect these technologies to help corporations.
Kay told eWEEK that while most enterprises probably do not yet understand the new activation process, once they do, they should find it quite useful for managing their fleets.
He also believes that these new technologies will ease the burden on IT administrators by allowing them to either administer the activation/validation themselves or have Microsoft do it.
"It will help them to know that every client that validates properly has a kernel with integrity. It represents a first-level health check," he said. "Also, they don't need to worry about rogue machines from ex-employees wandering around because they'll go dead after six months."
According to Enderle, proxy activation could actually result in some benefits, but the fact that the service currently does not run on a shipping server means that full testing will be off into the future, when it is expected to cover most hardware except that which is virtually always remote.
"The added benefits would be in asset tracking, which is an ongoing nightmare of a problem for enterprise and business, and this could provide a better fix than what many have," he said.
Vista is closer to the Unix/Linux security model in how it is being implemented, and that is probably where the vast majority of the security benefit will come.
"Still, not having to plaster the keys onto hardware will result not only in more attractive hardware, but it will lower the incidence of the problems related to stolen keys. So it should be more secure once the proxy is running on a secure server," he said.
But Enderle does caution that new problems will probably come from the proxy itself, and with mobile users where validation does not take place in a timely manner. It may also take awhile for this to become integrated with existing asset tracking tools, he said, while a redundant process can sometimes create problems for the primary process already in place.
"That is why it is important that we see some large, non-Microsoft production implementations before we recommend this. But, once fully tested and assuming it passes a high-volume test, I would recommend the use of this tool," he said. "I would also recommend it be integrated with whatever asset tracking solution was currently in place to more effectively track hardware."
Too much hardware is lost, and under current reporting rules that may actually be the bigger problem this helps solve. "But this recommendation will likely have to wait until after the proxy will run on a production server, which won't be until after mid-year 2007," Enderle said.
Check out eWEEK.com's for Microsoft and Windows news, views and analysis.