Windows Vista security under fire

By

Kaspersky questions platform's ability to fight off malware.

Windows Vista security under fire
Microsoft's Windows Vista is "unlikely to deliver long-term robust security protection", an IT security vendor claimed today.

An article published by Kaspersky Lab questioned whether the current security functions implemented in Vista will be effective.

The report, written by Kaspersky virus analyst Alisa Shevchenko, examined the key security aspects of Vista, including User Account Control, PatchGuard and Internet Explorer 7.

Vista's User Account Control ensures that any user, including the Administrator, has minimal rights, and that any 'suspicious' activity results in either a request for confirmation or a request to enter a password.

However, Shevchenko believes that a large number of harmless actions can be classed as 'suspicious', even if they turn out not to be malicious.

Alerting the user to each of these is likely to cause such a high volume of alerts that the user will either disable the feature or enter the Administrator password.

Shevchenko also claimed that "any type of protection can be evaded, and because of this, the advantages provided by this new layer of defence are conditional, and as practice shows, temporary".

He went on to claim that PatchGuard, which monitors modifications to the core system, can be evaded or disabled.

Shevchenko also questioned PatchGuard's protection against root-kits as it only offers protection against certain types of root-kit, and not all.

"Vista is undoubtedly more secure than previous Microsoft operating systems. And a system which is configured in such a way that everything is blocked except for access to designated sites could be regarded as being absolutely secure," said the report.

"However, the majority of users will find the significant restrictions on actions which effectively sterilise the system unacceptable, just as the constant requests to confirm or enter a password for an action which the system defines as being 'potentially dangerous'.

"And it is at this point that the 'almost totally secure' system is transformed in to a 'more vulnerable' system'."
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
firesecurityundervistawindows

Sponsored Whitepapers

Service Over Signatures: The Truth About No Lock-In IT
Service Over Signatures: The Truth About No Lock-In IT
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ

Events

Most Read Articles

Qantas facing 'significant' data theft after cyber attack

Qantas facing 'significant' data theft after cyber attack
Home Affairs officer accessed data on "friends and associates"

Home Affairs officer accessed data on "friends and associates"
International Criminal Court hit by cyber attack

International Criminal Court hit by cyber attack
SA Power Networks tackles IAM, cloud security under five-year strategy

SA Power Networks tackles IAM, cloud security under five-year strategy
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?