Microsoft Windows Vista Community Forums - Vistaheads
Recommended Download



Welcome to the Microsoft Windows Vista Community Forums - Vistaheads, YOUR Largest Resource for Windows Vista related information.

You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so , join our community today!

If you have any problems with the registration process or your account login, please contact us.

Driver Scanner

UAC not a "security boundary."

microsoft.public.windows.vista.security






Speedup My PC
Reply
  #1 (permalink)  
Old 09-17-2008
James R. Gentile
 

Posts: n/a
UAC not a "security boundary."
Does anyone know, why MS does not consider UAC to be a security boundary?
And what are the trade-offs involved with making it one? Is it not possible
to make it a security boundary? It seems kinda anti-customer to say "if we
find a security exploit in our code (in UAC) we won't fix it," doesn't it?
I wish this would be fixed in Windows 7, but I admit I don't understand all
the issues involved, so any help would be nice.

Reply With Quote
Sponsored Links
  #2 (permalink)  
Old 09-17-2008
FromTheRafters
 

Posts: n/a
Re: UAC not a "security boundary."
http://www.microsoft.com/technet/tec...C/default.aspx

Right near the bottom.

"James R. Gentile" <no1@nowhere.net> wrote in message
news:bK2dnfIw_fEv_k3VnZ2dnUVZ_judnZ2d@comcast.com. ..
> Does anyone know, why MS does not consider UAC to be a security boundary?
> And what are the trade-offs involved with making it one? Is it not
> possible to make it a security boundary? It seems kinda anti-customer to
> say "if we find a security exploit in our code (in UAC) we won't fix it,"
> doesn't it? I wish this would be fixed in Windows 7, but I admit I don't
> understand all the issues involved, so any help would be nice.


Reply With Quote
  #3 (permalink)  
Old 09-20-2008
Victor Constantinescu
 

Posts: n/a
Re: UAC not a "security boundary."
Hi,
Mark Russinovich explains it best in his presentation "Windows Security
Boundaries". You can view it on technet spotlight here:
http://www.microsoft.com/emea/spotli...px?videoid=993

--
Victor Constantinescu aka YounGun
Security MVP
http://victor-youngun.blogspot.com/


"James R. Gentile" <no1@nowhere.net> wrote in message
news:bK2dnfIw_fEv_k3VnZ2dnUVZ_judnZ2d@comcast.com. ..
> Does anyone know, why MS does not consider UAC to be a security boundary?
> And what are the trade-offs involved with making it one? Is it not
> possible to make it a security boundary? It seems kinda anti-customer to
> say "if we find a security exploit in our code (in UAC) we won't fix it,"
> doesn't it? I wish this would be fixed in Windows 7, but I admit I don't
> understand all the issues involved, so any help would be nice.


Reply With Quote
  #4 (permalink)  
Old 09-25-2008
James R. Gentile
 

Posts: n/a
Re: UAC not a "security boundary."
Good article, and good video, thanks to both of you.

"James R. Gentile" <no1@nowhere.net> wrote in message
news:bK2dnfIw_fEv_k3VnZ2dnUVZ_judnZ2d@comcast.com. ..
> Does anyone know, why MS does not consider UAC to be a security boundary?
> And what are the trade-offs involved with making it one? Is it not
> possible to make it a security boundary? It seems kinda anti-customer to
> say "if we find a security exploit in our code (in UAC) we won't fix it,"
> doesn't it? I wish this would be fixed in Windows 7, but I admit I don't
> understand all the issues involved, so any help would be nice.


Reply With Quote
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Endpoint security: "Essential security" or "Impossible dream"? Steve Security News 0 12-13-2007 10:50
Endpoint security: "Essential security" or "Impossible dream"? Steve Security News 0 12-12-2007 19:00
Article ID: 927832 Die Befehle "Hinzufügen" und "Entfernen" auf der Registerkarte "Treiber" stehen auf einem Remotedruckserver mit Windows Vista nicht zur Verfügung KBArticles German 0 10-22-2007 21:20
Article ID: 937249 "Mirovanje" is used for both the "Sleep" command and the "Hibernate" command on the "Shut Down" menu in the Slovenian version of Windows Vista KBArticles English 0 10-22-2007 20:00
Article ID: 938723 "Hibernates" or "hibernation" appears instead of "sleeps" or "sleep" in Power Options in the Traditional Chinese (CHT) version of Windows Vista KBArticles English 0 10-22-2007 20:00




All times are GMT +1. The time now is 10:33.




Driver Scanner - Free Scan Now

Vistaheads.com is part of the Heads Network. See also XPHeads.com , Win7Heads.com and Win8Heads.com.


Design by Vjacheslav Trushkin for phpBBStyles.com.
Powered by vBulletin® Version 3.6.7
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.6.0 RC 2

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120