- Posted by fedco
- On January 4, 2015
- it security, windows security
It is (will be) the end of Windows Server 2003 support from Microsoft. Starting from July 14, 2015 the following support will no longer available for this Operating System, there are:
1. Security patches that help protect PCs from harmful viruses, spyware, and other malicious software
2. Assisted technical support from Microsoft
3. Software and content updates
For those who still using this type of Operating System, please put more attention since the vulnerability and security risk such as malicious attacks or electronic data loss maybe increased.
For ICS environment, this end of support should be considered as something important to be addressed (again it needs to explore the Risk Assessment at case per case), some of the risk that maybe happened is the problems with software and hardware compatibility since new software applications and hardware devices may not be built for Windows Server 2003 (in correlation with ICS proprietary application and/or COTS software). Risk prevention and mitigation maybe performed in order to face with this risk exposure. For those who already has obsolescence strategy to cover the obsolete asset (including Windows Server 2003 environment) then it is a good point in order to maintain the secure and sustainable production operations.
Another way to mitigate the risk exposure of the ending support to Windows Server 2003 is by having a strategic agreement with Microsoft to address the special maintenance support for several period after July 2015. It may work or it may also not work, but the important thing is the action is should be made to always ensure the production operations is running safely and securely.
Please refer to US-CERT Alert TA14-310A for more detail security alert regarding this Microsoft End of Lifecycle Support to Windows Server 2003 Operating System