Industry insiders: Global 'Microsoft Blue Screen' sounds alarm for network security, research and development 'upgrade' urgently needed
爱心特使
发表于 2024-7-21 13:05:02
3856
0
0
Wu Ji, Chief Reporter of Shenzhen Business Daily's Creative App
According to CCTV News, on July 19th local time, some applications and services under Microsoft in the United States were unable to be used, resulting in access delays, incomplete functionality, or inability to access, and a large number of blue screens appearing on user computers. This technological malfunction swept across the globe, causing a large-scale event that caught people off guard: flights to multiple countries and regions were suspended, industries such as healthcare, banking, and hotels were "shut down", and even the London Stock Exchange was affected... Currently, Microsoft announced that the malfunction has been repaired and the situation is gradually recovering.
In an interview, the COO of Aoto Cloud Security stated that the security incident caused by security software was mainly due to conflicts between CrowdStrike's driver program and the Windows operating system. The underlying reasons may be incompatibility, conflicts between drivers, or the possibility of drivers triggering kernel bugs.
He said that this incident also brought important insights to the industry: firstly, safety remains the top priority. Secondly, in the selection of security product technology routes, software development usually includes kernel mode and user mode. The former has higher system permissions and can directly access hardware, but the disadvantage is that incorrect drivers may endanger the stability and security of the entire system; If the latter goes wrong, it usually only affects a single application and will not cause system crashes. At present, it seems that CrowdStrike is the problem caused by kernel state. If we try to use non kernel forms as much as possible, the probability of such problems occurring will be much lower.
He also mentioned that full updates are also a major industry taboo when conducting software updates. The usual practice in the industry is grayscale updates, such as step-by-step updates by region, industry, etc., as well as updates during non working hours and non peak business periods, and then large-scale updates after stabilization. This way, even if there are problems, it is not easy to affect the business continuity of customers, let alone affect customers worldwide.
This matter not only affects computer users worldwide, but also highlights the importance of choosing reliable technologies in the field of network security. For China, strengthening the research and application of domestically produced and independently controllable network security products is not only an important way to enhance the country's independent and controllable capabilities in network security, but also a solution; quot; Stuck neck& quot; The key to the problem.
Degree introduction: CrowdStrike's product is essentially a PC based EDR product, mainly using threat intelligence and machine learning technology to analyze process behavior. Compared with CrowdStrike, Aoto has shown significant advantages in server intrusion detection capabilities, web attack and weak command protection, and 0-day application protection. Whether on the server or PC, Qingteng can provide the same level of security protection and reliability. In addition, the product can also provide two modes: no drive and drive. In no drive mode, it can meet the majority of safety detection and protection capabilities.
It is believed that CrowdStrike's global blue screen incident provides an opportunity for Qingteng Cloud Security to enter overseas markets. With the official operation of offices in Singapore and Hong Kong, it will accelerate its overseas layout in the future; And analyze from four aspects: strengthening domestic research and development, enhancing independent and controllable capabilities, promoting the application of domestic products, and improving laws and regulations - the government should increase support for the research and promotion of domestic network security products, provide policy and financial support, and encourage enterprises to carry out technological innovation; Strengthen cooperation between universities, research institutions, and enterprises, promote the transformation of scientific research achievements, and facilitate technological progress and product innovation; Encourage enterprises to increase research and development investment, develop network security products with independent intellectual property rights, and enhance product competitiveness; Focus on breaking through key technologies such as operating systems, databases, middleware, etc., and reduce dependence on external technologies; Participate in or lead the formulation of international standards, enhance the discourse power and influence of domestic technology in the international market; Strengthen the security review of imported cybersecurity products to ensure that they do not pose a threat to national cybersecurity.
At the same time, promote the demonstration application of domestic network security products in key areas and important industries, and accumulate application experience; Strengthen network security education for users, enhance their awareness and trust in domestic network security products; Actively promote domestic network security products through various channels and methods to enhance market acceptance; Improve laws and regulations related to network security, and provide legal protection for the research and application of domestic network security products; Establish a sound network security regulatory mechanism, strengthen the supervision of network security products, and ensure their security and reliability.
In recent years, Qingteng has actively cooperated with relevant agencies of national ministries and commissions to carry out research on cloud security, software supply chain security, data security and other related topics, as well as to write national and industry standards, aiming to promote the compliance and healthy sustainable development of China's cloud security industry. As the first security vendor in China to be selected for the Gartner CWPP report, it focuses on cloud security construction in the field of critical information infrastructure. With its independently developed security products, it has been widely used in key areas such as government, finance, operators, tobacco, power grid, transportation, manufacturing, etc., providing strong support for the country's network security and information construction.
CandyLake.com 系信息发布平台,仅提供信息存储空间服务。
声明:该文观点仅代表作者本人,本文不代表CandyLake.com立场,且不构成建议,请谨慎对待。
声明:该文观点仅代表作者本人,本文不代表CandyLake.com立场,且不构成建议,请谨慎对待。
猜你喜欢
- Paijie Investment lowers Microsoft's target price from $485 to $470 to maintain its overweight rating
- 파이저 투자, 마이크로소프트 목표가 485달러에서 470달러로 하향 조정, 초배정 등급 유지
- OpenAI and Microsoft seem to be on the same page, but they are apart? It is said that potential "breakup clauses" have already been included in the contract between the two parties
- NVIDIA explodes with explosive materials! Guo Mingchi: Microsoft Q4 GB200 chip orders surge 3-4 times
- Microsoft adds autonomous agent functionality to Copilot Studio International Edition
- Before the US stock market, the three major futures indexes slightly rose, and well-known Chinese concept stocks generally rose; Wenyuan Zhixing restarts IPO in the United States with a maximum valuation of about 5 billion US dollars; Fashion luxury
- Microsoft's first quarter report: double-digit growth in performance, expected slowdown in growth of cloud business Azure
- 마이크로소프트 1분기 보고서: 실적 두 자릿수 성장, 클라우드 사업 Azure 성장 기대 둔화
- Top 20 US Stock Exchange Transactions: Microsoft Falls Over 6% After Results, Largest Single Day Drop in Two Years
- icrosoft는 2025년 10월 14일에 Windows 10 시스템에 대한 지원 서비스를 종료한다고 공식 발표했습니다.
-
【科技记者古尔曼:苹果计划于12月第一周发布iOS 18.2系统更新 带来更多人工智能功能】科技记者古尔曼透露,苹果计划于12月第一周发布iOS 18.2系统更新。iOS 18.2将为iPhone 15 Pro机型和所有iPhone 16机型带来更多 ...
- cristianna
- 昨天 17:32
- 支持
- 反对
- 回复
- 收藏
-
交易所监管文件显示,当地时间11月1日,亚马逊创始人杰夫·贝索斯拟出售约1635万股亚马逊股票,预计套现约30.5亿美元。今年7月,贝索斯已申请额外出售约2500万股亚马逊股票,按当时股价计算可套现约50亿美元。 ...
- blueskybb
- 3 天前
- 支持
- 反对
- 回复
- 收藏
-
近日,爱立信中国区总裁方迎在接受《经济参考报》记者采访时表示,5G技术在全球范围内得到了迅速发展,但面临商业潜力未能充分挖掘、网络运营难度较以往更高两大挑战。因此,运营商在继续5G网络部署的同时,应关 ...
- blueskybb
- 昨天 15:05
- 支持
- 反对
- 回复
- 收藏
-
近日,凯撒海湾目的地(山东)运营管理有限责任公司(简称“凯撒海湾”)与携程旅悦集团签署战略合作协议,双方将围绕“海上目的地运营”、“旅游产品与服务创新”、“研学旅行”、“日韩及海外旅游市场开拓”等 ...
- llyyy2008
- 3 天前
- 支持
- 反对
- 回复
- 收藏