PepiMK
2007-06-19, 16:20
http://forums.spybot.info/images/wVista-Works.pngDuring the past week, we've added the "Works with Windows Vista" to four additional programs: RunAlyzer (http://forums.spybot.info/index.php?page=runalyzer), FileAlyzer (http://forums.spybot.info/index.php?page=filealyzer), RegAlyzer (http://forums.spybot.info/index.php?page=regalyzer) and TagsRevisited (http://forums.spybot.info/index.php?page=tagsrevisited). All these applications already worked on Vista, but now have received enough testing as well as updates (e.g. to support Vista's UAC) to be ready to be faced with the Works with Windows Vista logo program.
Also, after struggling for months with Microsoft about Spybot - Search &D Destroy 1.5 and the more advanced Certified for Vista logo, we have decided not to get our next release certified. While we found the "Certified for Vista" logo requirements to be very useful to enforce a high software quality in general, it has a huge drawback, which essentially makes every certified security software prone to getting disabled by malware. Under these circumstances, version 1.5 will only receive the "Works with Windows Vista" logo, but at least there's nothing left blocking the release, which will take place as a beta version this week.
For those interested in the technical background of the decision:
Microsoft requires software that applies for this logo program to immediately crash when confronted with a situation described by Microsoft in detail. The background of this still is useful in a standard situation - software that has bugs should actually crash instead of just trying to hide them, so that Windows Error Reporting can log the problem and forward it to the developer. This way Microsoft can assure that applications that are part of the "Certified for Vista" program are of high quality.
However, in the context of a security application, this is hazardous: if malware writers can use a perfectly documented way to crash a security application, the overall security is greatly harmed. To avoid this, we suggested some alternatives to Microsoft that would not compromise the goal of submitting bug reports on errors that are the fault of the developer of the software. In the end though, some people at Microsoft seem to be too certain that Vista is absolutely safe, upon which we do not intend to comment, since key Microsofts employees have already done so, for example Jim Allchin (http://windowsvistablog.com/blogs/windowsvista/archive/2007/01/23/security-features-vs-convenience.aspx) or Mark Russinovich (http://blogs.technet.com/markrussinovich/archive/2007/02/12/638372.aspx).
More... (http://www.spybot.info/en/news/2007-06-11.html)
Also, after struggling for months with Microsoft about Spybot - Search &D Destroy 1.5 and the more advanced Certified for Vista logo, we have decided not to get our next release certified. While we found the "Certified for Vista" logo requirements to be very useful to enforce a high software quality in general, it has a huge drawback, which essentially makes every certified security software prone to getting disabled by malware. Under these circumstances, version 1.5 will only receive the "Works with Windows Vista" logo, but at least there's nothing left blocking the release, which will take place as a beta version this week.
For those interested in the technical background of the decision:
Microsoft requires software that applies for this logo program to immediately crash when confronted with a situation described by Microsoft in detail. The background of this still is useful in a standard situation - software that has bugs should actually crash instead of just trying to hide them, so that Windows Error Reporting can log the problem and forward it to the developer. This way Microsoft can assure that applications that are part of the "Certified for Vista" program are of high quality.
However, in the context of a security application, this is hazardous: if malware writers can use a perfectly documented way to crash a security application, the overall security is greatly harmed. To avoid this, we suggested some alternatives to Microsoft that would not compromise the goal of submitting bug reports on errors that are the fault of the developer of the software. In the end though, some people at Microsoft seem to be too certain that Vista is absolutely safe, upon which we do not intend to comment, since key Microsofts employees have already done so, for example Jim Allchin (http://windowsvistablog.com/blogs/windowsvista/archive/2007/01/23/security-features-vs-convenience.aspx) or Mark Russinovich (http://blogs.technet.com/markrussinovich/archive/2007/02/12/638372.aspx).
More... (http://www.spybot.info/en/news/2007-06-11.html)