Neil MacDonald

A member of the Gartner Blog Network

Neil MacDonald
VP & Gartner Fellow
15 years at Gartner
25 years IT industry

Neil MacDonald is a vice president, distinguished analyst and Gartner Fellow in Gartner Research. Mr. MacDonald is a member of Gartner's information security and privacy research team, focusing on operating system and application-level security strategies. Specific research areas include Windows security…Read Full Bio

Coverage Areas:

Vendors are a Big Part of the Problem in Getting off of IE6

by Neil MacDonald  |  January 29, 2010  |  4 Comments

Get off of Internet Explore version 6. Now.

IE6 has become an anchor (and a security risk). For Gartner clients, we’ve been advising this since October 2006. In blogging, I’ve said it here and most recently, here again.

However, in reality, the move is easier said than done. Here’s what I said in this research note on planning for and deploying the security features of Windows 7:

The most significant change in IE8 is not security-related — the new rendering engine is more standards-compliant. This introduces significant Web-based application compatibility issues for applications written to specific idiosyncrasies of IE6 (see “IE6 Apps Are Windows XP Apps, So Treat Them That Way in Migration Planning”). Although Microsoft includes IE5 and IE7 back-level rendering support, an IE6 rendering mode is not supported.

Some of your own in-house developed applications that use IE6-specific features will create problems during migration. But clients are telling us that some of their large enterprise application ISVs are the bigger problem. Some don’t officially support IE8 yet. Worse, some of the ISVs won’t support a newer browser unless you pay them money to upgrade to a newer version of their software. Issues with Cognos, Siebel and Peoplesoft are commonly called out as trouble areas in this regard.

Advice going forward: Make any web-enabled application vendor support multiple web-browsers and adhere to widely accepted rendering standards so that the chance of getting ‘locked in’ to a specific browser and version are minimized. Minimize the use of custom browser plug-ins to extend functionality (and that will hamper future migrations). 

I don’t want us to have to go through this again when IE9 (or Firefox 4 for that matter) comes out.


Category: Beyond Anti-Virus Microsoft Security     Tags: , , ,

4 responses so far ↓