Microsoft has criticised Google after it publicly detailed a Windows 8.1 security flaw days before Microsoft rolled out a patch to right it.
Senior director of the Microsoft Security Response Center Chris Betz wrote a lengthy blog post in which he expressed his frustration at the public disclosure. He said that security researchers and software companies to come together “and not stand divided over important protection strategies, such as the disclosure of vulnerabilities and the remediation of them.”
He disagreed with the viewpoint that full, public disclosure might push software vendors to fix security issues more quickly. Instead, he explained, releasing such information “unduly pressures an already complicated technical environment.” Betz directly addressed Google in the blog post in a bid to get the company to work alongside Microsoft before adding, “What’s right for Google is not always right for customers.”
Betz closed by acknowledging that no software is perfect because it is designed by humans. However, he noted that Microsoft is committed to working in its customers’ best interests to address any security concerns quickly and comprehensively.
Google may not be so quick to point out security flaws the next time after this tongue lashing.