Microsoft has recently taken action against it“Safe Future Plan”（SFI）A critical upgrade has been made to strengthen the network security defenses of Microsoft, customers, and the entire industry, building a more reliable cyberspace.

The plan was initially launchedtwo thousand and twenty-threeyearelevenLaunched on a monthly basis, after experiencing a series of security incidents, such asMSAKey leakageStorm-0558WithMidnight BlizzardHacker group attacks, Microsoft decides to implement fundamental security reforms. Based on industry feedback and internal analysis,two thousand and twenty-fouryearfiveMicrosoft willSFIExpand to six core security pillars: identity and confidential information protection, tenant and production system security, network security protection, engineering system protection, threat monitoring and detection, and accelerated response and repair. Meanwhile, Microsoft announced the introduction of a new security governance framework.

In terms of identity and confidential information protection, Microsoft has optimized its authentication services and application management to ensure that sensitive data is only open to authorized users. In terms of tenant and production system security, Microsoft has reduced the potential attack surface by optimizing application lifecycle management. Network security protection effectively resists external threats by strengthening physical asset management and network isolation. Strictly monitor the implementation of engineering system protection to ensure system security. Threat monitoring and detection enhance security auditing and threat search capabilities, enabling rapid response. Accelerating response and repair focuses on improving the speed of cloud vulnerability response and establishing a customer security management office（CSMO）To quickly respond to security incidents.

Microsoft Executive Vice President（EVP）Charlie Bell，Safe Future Planperson in charge

the near future,To further strengthen these pillars, Microsoft has established a Network Security Governance Committee led by the Chief Information Security Officer and appointed several Deputy Chief Information Security Officers responsible for critical security functions and security work in the engineering department. At the production network level, Microsoft has already99%The above physical assets are included in the central inventory system, which improves management efficiency. In addition, Microsoft has launched“Security Skills College”Provide personalized safety training for global employees.

Microsoft has updated its public cloud services in terms of identity and access managementMicrosoft Entra IDandMSA, usingAzuretrusteeshipHSMService enhances security and serves beyond73%The proprietary application provides security token verification functionality. In terms of system simplification and security default settings, Microsoft has implemented a new system simplification test tenant creation process, enforced lifecycle management, and implemented proof of existence checks in software development, establishing centrally managed security audit logs. In terms of response speed and customer engagement, Microsoft has optimized internal processes, shortened cloud vulnerability mitigation time, and establishedCSMOEnhance the transmission of security information and customer engagement.

sinceSFISince its launch, Microsoft has invested in the equivalent of34,000The workload of a full-time engineer has achieved significant results. In the future, Microsoft will continue to deepen its effortsSFIPlan to respond to constantly changing cybersecurity threats, improve security practices, and strive to create a more robust and trustworthy network environment.