Chapter 1. New Security Features
It is not hyperbole to say that almost every line of Windows Vista code has an increased focus on security. Each subsequent version of the Windows operating system (OS) has been demonstrably more secure than the previous one. Windows Vista is no different. It contains hundreds of new security features, and what isn't completely new is improved. Windows Vista includes new security mechanisms, improved versions of older features, enhanced integration, improved interfaces, and stronger default settings. Chapter 1 will cover the most significant new and improved Vista security settings. It's a long chapter, but worth the read.
Security Development Lifecycle
Not surprisingly, the increased security focus of Windows Vista began in the planning stages. Windows Vista is the first Microsoft OS to be built from the ground up using the Security Development Lifecycle (SDL). SDL is designed to infuse security into software development, starting long before the first line of code is written.
Crucial to SDL is the identification of potential threats using a method called threat modeling, where every possible threat that can be imagined is documented. The lack of a coherent threat model led to most of the security design flaws of past Windows operating systems.
This time around, Microsoft employees and external security reviewers identified over 1,400 unique threat modeling scenarios. A large majority of the models focus on the dangers of automated malware (i.e., viruses, ...
Get WINDOWS VISTA™ SECURITY: Securing Vista Against Malicious Attacks now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
