On TechRepublic: Five super-secret features in Windows 7
BNET Business Network:
BNET
TechRepublic
ZDNet

September 21st, 2006

Vista Mythbusters #6: Is Vista really more secure?

Posted by Ed Bott @ 5:59 am

Categories: Image Galleries, Vista Mythbusters, Windows Vista

Tags:

In Focus » See more posts on: Vista, Vista Galleries

Myth: Microsoft touts Windows Vista as the most secure Windows ever, but the changes are mostly cosmetic. In addition, the new User Account Control feature is so annoying that most Vista users will simply turn them off.

Reality: There's a lot more to security in Windows Vista than just a few dialog boxes, and anyone who takes advantage of all the new features will certainly be more secure. But no one can say for sure how effective the new tools will be for the broad community of Windows users until Vista is widely available.

User Account Control is the security star of Windows Vista. It gets the lion's share of the publicity, and through Beta 2 the reviews weren't good. In early builds, beta testers complained that User Account Control was annoying and confusing, overwhelming users with a blizzard of consent dialog boxes for seemingly simple actions.

eb_vista_security_small.png

In Vista Release Candidate 1, UAC has been toned down dramatically. I've put together an image gallery that shows what the security features in this near-final version look and feel like so you can see for yourself. If you install RC1, you'll see UAC prompts only when you actually try to change a system setting, install a new program, or access files and folders in protected locations. In Beta 2, for instance, simply opening Task Manager required consent via a UAC prompt; in RC1, Task Manager opens as usual, and consent is only required if you want to see processes that are owned by a system account or by an account other than the current logged-on user. After initially setting up a new PC, most users will barely notice UAC. Microsoft is hoping that will convince most users to leave this feature enabled.

But what about the larger picture? Do the new security features help? The answer is a qualified yes.

The biggest weakness in Windows XP from a security point of view is its poor support of limited (also known as standard) user accounts. Using any operating system in a standard account is a smart security practice, because security exploits typically work with the credentials of the logged-on user. A standard user who gets tricked into clicking a link that leads to a hostile web page or installing a piece of malware can't alter system settings. But anyone who's tried to run Windows XP using a limited account has probably given up in frustration within a few hours. Vista changes that experience architecturally, by virtualizing the directories and registry keys where programs are allowed to write. (See this page for an example.)

Many programs that fail when run under a standard user account in Windows XP run just fine under Vista, thanks to this change. In homes and on business networks, that means administrators (including parents) can set up users with standard accounts and severely limit the damage they're able to do, even if an attacker can convince them to try to install a program.

The companion piece to UAC is the new Protected Mode in Internet Explorer 7, which shifts browser add-ins into a sandbox and makes it more difficult for them to access system locations. An administrator who carefully sets up a new Vista system can protect users from themselves by restricting their ability to install malware or make changes that compromise the system. [Update: As commenter PB_z notes, Protected Mode IE runs the entire browser process in this sandbox, not just add-ins.]

But UAC and the new IE7 security features only ask questions; they don't provide detailed information that nontechnical users can rely on to make decisions. As images like this one show, a user who is confronted with a UAC dialog box often has only a filename or a snippet of technical gobbledygook available on which to base a decision. That raises the bar for scammers and attackers who use social engineering techniques, but only slightly. And critics say, with some justification, that users who leave UAC enabled will simply learn to click yes automatically, undoing most of the security benefits.

Corporate users have a whole toolbox of additional security options as well, including Bitlocker drive encryption, better support for authentication through Smart Cards, and policies that can lock down a system without locking out users.

Will Vista be more secure? Certainly. But it will be months, maybe a year or more, before we know how much of a difference it really makes.

For the introduction to this series, see Vista Mythbusters #1. For all posts in this series, see this page.

Ed BottEd Bott is an award-winning technology writer with more than two decades' experience writing for mainstream media outlets and online publications. See his full profile and disclosure of his industry affiliations.

Email Ed Bott

Subscribe to Ed Bott's Microsoft Report via Email alerts or RSS.

  • Talkback
  • Most Recent of 159 Talkback(s)
You are clueless
"There is one fundamental rule that any program that is designed to display untrusted objects MUST obey, and that is that there must be NO mechanism inside the sandbox to request (not to gain, just... (Read the rest)
Posted by: toadlife Posted on: 10/06/06 You are currently: a Guest | | Terms of Use
Yea, and what about the millions of lines of new code, plus all of the old  DonnieBoy | 09/21/06
Pure FUD  Ed BottZDNet Moderator | 09/21/06
Don't worry about DB's comments  Confused by religion | 09/21/06
As long as MS is building products, there will be plenty of problems to  DonnieBoy | 09/21/06
There is...  zedman2006 | 09/21/06
Either you are jokeing or yopu are insane  Cayble | 09/22/06
Because it's easy to use?  mds_z | 09/23/06
Problems  JimSatterfieldW | 09/22/06
Your wound a little tight today, aren't ya.  Hrothgar - PCLinuxOS User | 09/25/06
IF he had even one real point...  No_Ax_to_Grind | 09/21/06
Millions of lines of new code and tons of new features can NOT be added  DonnieBoy | 09/21/06
DonnieBoy, you do more to harm Linux than any MS person.  No_Ax_to_Grind | 09/21/06
So, you are claiming that MS can add millions of lines of code and new  DonnieBoy | 09/21/06
Exactly  toadlife | 09/21/06
Well..  Patrick Jones | 09/21/06
re: Well  toadlife | 09/21/06
Whats wrong with you?  Cayble | 09/22/06
Do you think so?  Patrick Jones | 09/21/06
Man... The FUD is getting deep...  Wolfie2K3 | 09/21/06
Mixed up logic!  TerryNT | 09/21/06
FUD perhaps, but pure?  mds_z | 09/23/06
excuses, excuses  wresnick | 09/22/06
*IT'S* support of limited user?  rpmyers1 | 09/21/06
And, you have hit the nail on the head. One of the big problems is that  DonnieBoy | 09/21/06
Good grief are you really this clueless?  No_Ax_to_Grind | 09/21/06
And you don't have any arguments, just insults.  DonnieBoy | 09/21/06
Dan Quayle...  Wolfie2K3 | 09/21/06
You say potatoe, I say...  Ed BottZDNet Moderator | 09/21/06
Donnie, donnie, donnie  TonyMcS | 09/21/06
12? No, he knows who Dan Quayle is  Ed BottZDNet Moderator | 09/21/06
No, 98 is to old and 12 is to high for his IQ  Cayble | 09/22/06
Hey, in the EU it will be LESS secure  Qbt | 09/21/06
You are so right...  No_Ax_to_Grind | 09/21/06
You know they won't do that  Patrick Jones | 09/21/06
Why not?  No_Ax_to_Grind | 09/21/06
It does make a difference..  Patrick Jones | 09/21/06
We'll see  Ed BottZDNet Moderator | 09/21/06
I am a linux user  Knorthern Knight | 09/21/06
I am also a Linux user  jackie40d@... | 09/22/06
RE: I am also a Linux user  joe6pack_z | 09/22/06
People Bashing  joe@... | 09/25/06
blame the movie industry for that one.  Hrothgar - PCLinuxOS User | 09/25/06
Actually, we will all be safer because of the EU. They will help maintain  DonnieBoy | 09/21/06
Horse hockey!  Wolfie2K3 | 09/21/06
That's the whole point  rick@... | 09/22/06
You're missing something here  Punchey | 09/22/06
I respectfully dissagree  Insight Driver | 09/22/06
I view a car as a means of transport...  Punchey | 09/22/06
IE integration  Endoscopy | 09/22/06
Non-essential  Punchey | 09/22/06
Non-essential  jmorgus@... | 09/22/06
Yes, MS has been very hypocritical/opportunist...  Punchey | 09/22/06
Definitely essential  petteyg359 | 09/23/06
Small thinking  pkrdk | 09/24/06
Maybe just maybe  Hrothgar - PCLinuxOS User | 09/25/06
Convoluted Thinking  tbsteph@... | 09/22/06
"...safer because of the EU..."  jeff.smestuen@... | 09/25/06
Ed--Thoughts on folder renaming  bmgoodman | 09/21/06
No, sorry  Ed BottZDNet Moderator | 09/21/06
Symlinks?  Yagotta B. Kidding | 09/21/06
Reparse points  Ed BottZDNet Moderator | 09/21/06
My backhanded compliment to Vista  DannyO_0x98 | 09/21/06
Perhaps, perhaps not?  CobraA1 | 09/21/06
Well, yes and no  Ed BottZDNet Moderator | 09/21/06
And so it begins  Yagotta B. Kidding | 09/21/06
Hear Hear  barsteward | 09/21/06
What are you talking about  mdemuth | 09/21/06
Good Cop, Bad Cop  Harry Bardal | 09/21/06
Welcome back, Harry  Ed BottZDNet Moderator | 09/21/06
Why not?  Patrick Jones | 09/21/06
But you don't need to  Ed BottZDNet Moderator | 09/21/06
And..  Patrick Jones | 09/21/06
As I said in another post  Ed BottZDNet Moderator | 09/21/06
Probably  Patrick Jones | 09/21/06
Keeping your head in the sand--good strategy  tic swayback | 09/21/06
I looked. I decided.  Ed BottZDNet Moderator | 09/21/06
Missing the point  tic swayback | 09/21/06
Fair criticism  Ed BottZDNet Moderator | 09/21/06
But Harry says it so well...  tic swayback | 09/21/06
I wish Apple had more open products  Ed BottZDNet Moderator | 09/21/06
Oh come now  tic swayback | 09/21/06
Sorry, I don't have a spare $1300  Ed BottZDNet Moderator | 09/21/06
Best get to bloggin' then!  tic swayback | 09/21/06
My main notebook is a tablet  Ed BottZDNet Moderator | 09/21/06
Please ED... "MY Main Notebook "  LazLong | 09/21/06
Oh puh-leeze I'  Ed BottZDNet Moderator | 09/21/06
Oh puh-leeze  Ed BottZDNet Moderator | 09/21/06
How much did you pay for your tablet?  tic swayback | 09/22/06
LOL!  Punchey | 09/22/06
Don't mock the mighty Newton!  tic swayback | 09/22/06
Tic, Tic, Tic ...  Ed BottZDNet Moderator | 09/22/06
You might want to think about switching for recording tv  tic swayback | 09/22/06
Flying V  Harry Bardal | 09/22/06
The Inky story is complete BS  Ed BottZDNet Moderator | 09/22/06
Harry  Ed BottZDNet Moderator | 09/22/06
It's a feature, just not for you  tic swayback | 09/22/06
Lesser machine? No...  Ed BottZDNet Moderator | 09/22/06
Hence better  tic swayback | 09/22/06
I already checked the specs, no Leopard on G3  Ed BottZDNet Moderator | 09/22/06
Hardware, Software and Workflow  Harry Bardal | 09/22/06
OK  Ed BottZDNet Moderator | 09/22/06
Len, I have no idea  Ed BottZDNet Moderator | 09/22/06
Advocacy  Harry Bardal | 09/21/06
Sorry, no  Ed BottZDNet Moderator | 09/22/06
It's Not About You  Harry Bardal | 09/22/06
Sorry, but a $50 G3 won't cut it  Ed BottZDNet Moderator | 09/22/06
Leopard will run on non-Intel machines  tic swayback | 09/22/06
See my reply above  Ed BottZDNet Moderator | 09/22/06
Post the Specs  Harry Bardal | 09/22/06
$50 education  Len Rooney | 09/22/06
Educate yourself, Len  Ed BottZDNet Moderator | 09/22/06
OK, Let's begin  Len Rooney | 09/22/06
Minimums  Harry Bardal | 09/22/06
Len, I have no idea.  Ed BottZDNet Moderator | 09/22/06
Jeebus, Harry  Ed BottZDNet Moderator | 09/22/06
Re: Len, I have no idea  Len Rooney | 09/22/06
OSX? Great OS if you can stand...  Cayble | 09/22/06
I smell BS  Rick_K | 09/22/06
Still Mac ins't  Krazyken39 | 09/22/06
The BS keeps flowing  Rick_K | 09/22/06
hmmm  Krazyken39 | 09/25/06
Those updates are really tough to take  tic swayback | 09/22/06
Upgrade or I Kill This Puppy  Harry Bardal | 09/22/06
Hey Harry, Some of us Know things like--  barefoot1976 | 09/24/06
EULA-gize  BALTHOR | 09/21/06
Another straw man gunned down  Chad_z | 09/21/06
Speaking of straw men...  Ed BottZDNet Moderator | 09/21/06
Well... Really...  Wolfie2K3 | 09/21/06
No, it wasn't  Ed BottZDNet Moderator | 09/21/06
I believe  Rick_K | 09/22/06
"Our" not "the"  Ed BottZDNet Moderator | 09/22/06
Actually...  Rick_K | 09/22/06
Here's a few quotes  Ed BottZDNet Moderator | 09/21/06
M$ is copying Linux  tfahs_orcim | 09/21/06
So true..... not to forget  LazLong | 09/21/06
Everything you just listed...  toadlife | 09/21/06
Win NT granular? HEHEHE! Yeah ok!  graphx | 09/22/06
I suggest you do some reading  toadlife | 09/22/06
You should get a clue  thegestunkenaraygun | 09/26/06
Study your history  Ed BottZDNet Moderator | 09/26/06
Correction re: IE7 protected mode  PB_z | 09/21/06
Is that Available for XP & IE7  LazLong | 09/21/06
Not available for XP/IE7  Ed BottZDNet Moderator | 09/22/06
I've updated the post with a link to your comment  Ed BottZDNet Moderator | 09/22/06
Whats up with calling it Mythbusting?  graphx | 09/22/06
Show me the FUD  Punchey | 09/22/06
Leave it to the testers?  Ed BottZDNet Moderator | 09/23/06
security ramblings  gdstark13 | 09/22/06
Citrix/WinFrame/WinDD had this in 1998  Resuna | 09/22/06
Vista Security  shel10_z | 09/22/06
Hmm  Krazyken39 | 09/22/06
Simple steps ignored  a1comp@... | 09/22/06
There's a difference between security and obscurity  Punchey | 09/22/06
RE: There's a difference between security and obscurity  gdstark13 | 09/22/06
Message has been deleted.  BeGoneFool | 09/23/06
Vista Mythbusters #6  nifotech@... | 09/25/06
NOPE Vista ain't safe by a long stretch  BeGoneFool | 09/25/06
Solving the wrong problem!  Resuna | 10/06/06
You are clueless  toadlife | 10/06/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Click Here
advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

Archives

ZDNet Blogs

White Papers, Webcasts, and Downloads

Meet Doc