In a blog post today, Microsoft VP for Trustworthy Computing Security, Matt Thomlinson, shared three important milestones following Microsoft’s earlier promise for better data security and increased transparency.
Outlook.com is now protected by by Transport Layer Security, or TLS, encryption for both outbound and inbound email. Yes, this works with other email providers too, provided they also support TLS on their end. In addition to TLS, Outlook.com also enabled Perfect Forward Secrecy (PFS) encryption support for sending and receiving mail between email providers. By having unique encryption key for each connection, it makes it difficult for attackers to decrypt the connections.
OneDrive supports PFS encryption too. This works be it you’re using the cloud storage service through onedrive.live.com, the mobile OneDrive app, or Microsoft’s sync clients.
Lastly, the first Microsoft Transparency Center has opened on Microsoft’s Redmond, Washington campus and will provide participating governments with the ability to review source code for Microsoft’s key products, assure themselves of Microsoft’s software integrity, and confirm there are no ‘back doors’. There will be more such transparency centers, and their locations will be announced soon.