ActiveSync 4.0, WiFi Sync and Some Clarification

If you have not heard, Windows Mobile 5.0 (the OS formerly known as “Magneto”) was announced today at MEDC (Mobile Embedded and Developers Conference). Lots of great stuff for end users and developers. If you are looking for information, we’ve posted a lot at BostonPocketPC.com.

Also announced today was the release of ActiveSync 4. Now, before you go out and install this, there is something very important you need to know. ActiveSync 4 does not include WiFi synchronization (except with Exchange Server). If you use this functionality and need it, please continue using ActiveSync 3.8.

The immediate backlash from this has been quite harsh. I am concerned, however, that the whole story regarding the removal of this feature has not been told thus far. So, I feel it is important to me to post something that I feel is immensely important here and now for posterity's sake.

As I just mentioned, ActiveSync 4.0 does *not* include WiFi synchronization. This was initially brought to all of the Mobile Device and .NET Compact Framework MVPs attention a couple of months ago. Also clearly stated at that time was the reason.

WiFi ActiveSync has never been secure. While this has essentially just "slipped by" for quite a while, the recent emphasis by Microsoft on security across all product lines made this an issue. When it was realized that a serious security hole existed, the problem then became what it would take to close that hole. Unfortunately, quite a bit of work needs to be performed.

In order to Windows Mobile 5.0 to ship, ActiveSync 4 needed to ship at the same time. Some of the synchronization enhancements required an update that is included within ActiveSync 4 (AS 4 is backward-compatible with older devices, though) The decisions, therefore, became quite limited. Either:

1) Remove WiFi synchronization from ActiveSync for now, allowing for the product to ship on time;
2) Delay release of both Windows Mobile 5.0 and ActiveSync 4.

The final decision was the former of the options.

I can say that the entire body of Mobile Devices AND .NET Compact Framework MVPs were very troubled by the removal of WiFi synchronization. The result of this is that Microsoft is looking at what would need to be done to bring WiFi synchronization back AND alleviate the security issues.

Why am I stating all of this here? For a couple of reasons -

1) Microsoft did give some people a "heads up" on this issue. In addition to MVPs, developers participating in beta testing for Windows Mobile 5.0 development were made aware of this issue. I want to be perfectly clear about this - people were informed.
2) A number of people expressed concerns over this issue, and Microsoft listened. Although the short-term solution was undesirable, there is no permanence. Again - people were informed.
3) All - I cannot emphasize this enough - ALL  of the people who were involved in the discussions were made clearly aware of the reasons why this decision was made. Any comments to the effect of "I can't understand why this happened" are simply not true. Period – end of discussion.

Listen - I find this whole thing a hard pill to swallow, too. But I refuse to run from the issue and act like it was done in utter silence and without explanation. While I might not agree with the result, I can accept the fact that there was a valid reason for it, and I am appreciative in the fact that it was explained to me. I also can't sit by and let anyone who knows this to give any impression to the contrary.

Here’s to hoping that the solution to the ActiveSync 4 WiFi security problem is resolved sooner rather than later, and that those you use this (myself included) will have a restored and secure experience moving forward.

Published Tue, May 10 2005 16:13 by Don
Filed under: ,

Comments

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Saturday, May 14, 2005 9:43 PM by Don
Hey Don....long time....)

Thanks for posting this. For me, now out of the MVP loop, I could only guess at the reasoning for removing WiFi from Activesync, till now. Elsewhere everyone has been very quite as to why. I had heard rumors of the fact of it being for security reasons, but that was it.

I still think it was a bad choice. If there are security risks, they still exist in all the previous versions of AS, which are STILL in use, and will continue to be in use for quite some time. By removing it from 4.0 does notheing to fix the problem. It only narrows the problem slightly. Very slightly!

One of my last comments before I left the MVP program was to state my displeasure with the fact that MS was wasting resources by developing a Mobile PowerPoint application, when resources could have been put to better use. I believe AS is actually part of the Widows group, but I think it still shows the lack of proper use of resources.....It's EASY to leave something out instead of fixing it.......If there are security issues, they have known about them for years. By saying they don't have enough time to fix them before WM 5.0 devices begin shipping is amateur at best.

Next, I think the vast majority of users who use WiFi to sync would find no problem with the security. I think it is a much smaller portion of users, consumer or enterprise who would have a problem with the security issues. Given that, the majority of users have no choice now. Would it not have been more effective, and less painful to continue on with WiFi and simply issue a warning to those who choose to use it. A much better way of handling this would be a simple window stating....."There are security issues when syncing with Wifi, do you wish to continue?"

Feel free to pass this along if you wish, Don...be cool, my friend!

Dave

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Tuesday, May 17, 2005 11:13 PM by Don
Dave,

I actually think that the whole thing boils down to a "timing is everything" in the worst way. The issue of security did not come up until later in the game; as part of the security initiatives across Microsoft, the process of "audits" has been ongoing for quite some time (and will probably continue for some time to come). The flags went up in the eleventh hour, and I really don't think any amount of resources would have helped given the time frame. The solution would require changes to ActiveSync on both the device and the desktop.

I do agree that the prompt option should have been the way to go. I am not sure why this was not considered as a possibility. In all reality, the precident exists with Security Center in SP2. I do have the ability to turn off features (albeit only after being made to feel like an absolute fool for doing so ;-)).

Don

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Saturday, May 21, 2005 11:05 PM by Don
I seriously question how long MS has know of the security issues. I have a hard time believing that it was really eleventh hour.....I have a build of AS 4.0 that is almost a year old, and it does NOT have WiFi sync capabilities....hmmmm! It has everything else but not WiFi. It was already removed. They knew very early on. They are far too centered on pushing out new functionality at the cost of not fixing issues with present features. This is not good. ;)

Dave

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Tuesday, May 24, 2005 3:01 PM by Don
Dave,

Most security reviews are done by personnel outside of the group directly responsible for a product (thus living up to the spirit of an "audit"). The result can (as a result of bad timing, as mentioned previously) be very much like having a building inspector show up at the end of a construction project and saying "I don't like that. Fix it or remove it." The only difference - building codes tend to be a lot more stable and less arbitrary than security standards ;-)

Actually, the early builds of AS 4 that I got didn't have much functionality at all outside of barebones cable sync. I wouldn't necessarily make that out to mean they knew all along. Not saying they did, not saying they didn't. I will not, however -

1) Portray the situation as anything different then my original post;
2) Read into it anything deeper than it is.

Listen - I use (now "used") WiFi ActiveSync. Sure, I'm disappointed in the loss of functionality. To portray my use as anything greater than one individual, however, would be wrong. To claim repatedly that the whole world uses WiFi ActiveSync would be - well, a lie. To claim that the reason that MS did this was to force people to use Exchange Server would be - well, speculation at best. To claim that this could have been fixed easily in "X" number of hours is - well, BS. Unfortunately, this seems to be all I am hearing on this subject though, including from people who simply know better.

I also can't say that someone dropped the ball here. Reason - timing sometimes stinks. If there aren't actions taken to resolve this in the long term, *then* I'll point fingers (complete with the shaking effect).

Finally - I don't disagree on the new functionality argument, although I do add one caveat. How willing would *you* be to invest in resources to fix product and package it all up, only to have OEMs never pass them along to consumers? THIS is an area that has to be addressed. And the "Well, MS has to force them" doesn't work. Next time someone who screams "EVIL EMPIRE" to me in one breath and that argument in the next is gonna make me snap ;-). You can't force OEMs, but you can convince and entice them.

There are OEMs who are being proactive in this regard, but it always ends up being a crapshoot. Even the best of the OEMs have occasionally skipped AKUs, figuring its not worth the effort.

Ahh - good times, good times... ;-)

DonS

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Wednesday, June 15, 2005 8:54 AM by Don
Fine in principal: I want WiFi connection to ActiveSync for my home LAN, but how do I go back to ActiveSync 3.8?? Once you've loaded v4.0, it seems there's no going back unless you reload Windows. HELP!

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Wednesday, June 15, 2005 11:56 AM by Don
About the only "easy" way to roll back would be to find a system restore point closest to the ActiveSync 4.0 installation. This would bring you back to a 3.8 state. I know of a couple of folks that have done this.

Short of that, the only guaranteed method would be to do as you say.

DonS

# re:ActiveSync 4.0, WiFi Sync and Some Clarification

Friday, July 15, 2005 11:04 PM by TrackBack
ActiveSync 4.0, WiFi Sync and Some Clarificationooeess

# re:ActiveSync 4.0, WiFi Sync and Some Clarification

Sunday, July 31, 2005 10:01 PM by TrackBack
ActiveSync 4.0, WiFi Sync and Some Clarificationooeess

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Wednesday, August 24, 2005 7:05 PM by Don
Is there any undocumented way (e.g. by hacking the registry) to re-enable WiFi in ActiveSync 4.0?

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Wednesday, October 12, 2005 11:45 AM by Don
I have tried using Active Sync 3.7 to Wifi sync without success, as well as 3.8 with the same results. I moved to AS4, does this mean I am totally out of luck ? I would also be interrested in any undocumented method of syncing over Wifi.

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Thursday, October 13, 2005 4:52 PM by Don
Hi! I am new here. Can anybody advice me about how can I use Active Sync 3.8 to work in WiFi enviroment? I just know tht it was not working well. However, to me i never been able to setup the activeSync thro the WiFi.
Help please.
Thank you

John

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Monday, October 24, 2005 2:28 AM by Don
hi guys, I am new to this, can anyone tell me how to setup ActiveSync 3.8 with WiFi Sync?

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Sunday, October 30, 2005 5:44 PM by Don
So if I sync with Exchange Server via my Mobile operators data connection and I want to sync via wi-fi with my Exchange Server I can still do this with ActiveSync 4.0?

My understanding is that you can no longer ActiveSync via wi-fi with your home computer...Is that correct?

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Sunday, November 06, 2005 4:09 PM by Don
Well it is real nice that MSFT tells it MVP's but is that good enough. Are the only users that exist MVP's? No. How about a nice warning banner if we happen to upgrade our devices? Nope did not think so bad news is not an option.

# re: ActiveSync 4.0, WiFi Sync and Some Clarification

Sunday, November 20, 2005 6:21 AM by Don
OK nvm about my post just now. i just found a site which gave me all the instructions i needed. now my ppc is up and running over the wifi connection in my home. the site is
http://wifi.aximsite.com/sync.html

Leave a Comment

(required) 
(required) 
(optional)
(required)