[nfbwatlk] Microsoft working to minimize risk

Lauren Merryfield lauren at catliness.com
Thu Aug 3 02:43:35 CDT 2006 

I wonder how well they are working with blind people to make sure these popups and stuff are readable with screen-reader software???

Microsoft working to minimize risk
SEATTLE POST-INTELLIGENCER
http://seattlepi.nwsource.com/business/279714_vistaside02.html

Microsoft working to minimize risk

Wednesday, August 2, 2006

By TODD BISHOP
P-I REPORTER

After years of security trouble, Microsoft says it believes Windows Vista will be the most secure version of the PC operating system it's ever produced.

That won't mean an end to all problems. And security experts say the real test won't come until after Windows Vista's retail release next year. But these
are some of the new approaches the company is taking in Vista:
List of 7 items

. Security Development Lifecycle: new practices and safeguards in Microsoft's software development process meant to improve the security of code.

. User Account Control: a technique that gives standard users the ability to shift temporarily to higher privileges for installing programs and changing
settings. It's a substitute for running the computer in full administrator mode -- which lowers the PC's protections against spyware and other unwanted
programs.

. BitLocker: a feature of business-oriented and advanced Windows Vista versions that encrypts data on a hard drive to protect it in case of theft or loss.

. Upgraded firewall: oversees inbound and outbound traffic, not just inbound traffic, as in the Windows XP firewall.

. Windows Defender: built-in anti-spyware protection. It's one of the areas that the European Commission has considered in weighing whether Windows Vista
might violate antitrust regulations, by incorporating new programs available on a stand-alone basis from others.

. Internet Explorer 7 Protected Mode: limits browser's capabilities in Windows Vista to stop attackers from using it as a pathway to install programs on
the machine or change settings.

. Address Space Layout Randomization: loads the system code into unpredictable places in memory, to make it tougher to exploit a buffer overrun -- a common
security risk that occurs when a program tries to write more data than it should to a temporary holding space in memory. Examples of previous attacks that
exploited buffer overruns in Microsoft programs include the notorious SQL Slammer and Code Red worms.

list end

IMPROVED SECURITY

User Account Control

Windows Vista users will encounter User Account Control boxes like this one when installing programs or changing certain settings in the upcoming operating
system. It's a new security precaution meant to thwart the installation of unwanted programs such as spyware.

Some early Windows Vista testers complained that the pop-up boxes were excessive, causing too many interruptions. Microsoft says it has been trying to address
the complaints by reducing the number of pop-ups.

RELATED STORY
Microsoft overhauls Windows security

P-I reporter Todd Bishop can be reached at 206-448-8221 or toddbishop at seattlepi.com.

© 1998-2006 Seattle Post-Intelligencer

thanks
Lauren
"What you really desire is to matter, to make a difference,
to add your own special essence and flavor to life. What
will bring you fulfillment is to create, express and bring
to life, in your own way, the unique beauty of your spirit."  --Ralph Marston 
"Nature abhors a vacuum, but not as much as cats do." - Lee Entrekin
CATLINES has moved to a blog at:
http://bizcats.blogs.com/catlines/
sign up for CATLINES and more:
http://www.catliness.com

-------------- next part --------------
I wonder how well they are working with blind people to make sure these popups and stuff are readable with screen-reader software???
 
Microsoft working to minimize risk
SEATTLE POST-INTELLIGENCER
http://seattlepi.nwsource.com/business/279714_vistaside02.html http://seattlepi.nwsource.com/business/279714_vistaside02.html
 
Microsoft working to minimize risk
 
Wednesday, August 2, 2006
 
By TODD BISHOP
P-I REPORTER
 
After years of security trouble, Microsoft says it believes Windows Vista will be the most secure version of the PC operating system it's ever produced.
 
That won't mean an end to all problems. And security experts say the real test won't come until after Windows Vista's retail release next year. But these
are some of the new approaches the company is taking in Vista:
List of 7 items
 
• Security Development Lifecycle: new practices and safeguards in Microsoft's software development process meant to improve the security of code.
 
• User Account Control: a technique that gives standard users the ability to shift temporarily to higher privileges for installing programs and changing
settings. It's a substitute for running the computer in full administrator mode -- which lowers the PC's protections against spyware and other unwanted
programs.
 
• BitLocker: a feature of business-oriented and advanced Windows Vista versions that encrypts data on a hard drive to protect it in case of theft or loss.
 
• Upgraded firewall: oversees inbound and outbound traffic, not just inbound traffic, as in the Windows XP firewall.
 
• Windows Defender: built-in anti-spyware protection. It's one of the areas that the European Commission has considered in weighing whether Windows Vista
might violate antitrust regulations, by incorporating new programs available on a stand-alone basis from others.
 
• Internet Explorer 7 Protected Mode: limits browser's capabilities in Windows Vista to stop attackers from using it as a pathway to install programs on
the machine or change settings.
 
• Address Space Layout Randomization: loads the system code into unpredictable places in memory, to make it tougher to exploit a buffer overrun -- a common
security risk that occurs when a program tries to write more data than it should to a temporary holding space in memory. Examples of previous attacks that
exploited buffer overruns in Microsoft programs include the notorious SQL Slammer and Code Red worms.
 
list end
 
IMPROVED SECURITY
 
User Account Control
 
Windows Vista users will encounter User Account Control boxes like this one when installing programs or changing certain settings in the upcoming operating
system. It's a new security precaution meant to thwart the installation of unwanted programs such as spyware.
 
Some early Windows Vista testers complained that the pop-up boxes were excessive, causing too many interruptions. Microsoft says it has been trying to address
the complaints by reducing the number of pop-ups.
 
RELATED STORY
Microsoft overhauls Windows security
 
P-I reporter Todd Bishop can be reached at 206-448-8221 or mailto:toddbishop at seattlepi.com toddbishop at seattlepi.com
.
 
© 1998-2006 Seattle Post-Intelligencer
thanks
Lauren
"What you really desire is to matter, to make a difference,
to add your own special essence and flavor to life. What
will bring you fulfillment is to create, express and bring
to life, in your own way, the unique beauty of your spirit."  --Ralph Marston
"Nature abhors a vacuum, but not as much as cats do." — Lee Entrekin
CATLINES has moved to a blog at:
http://bizcats.blogs.com/catlines/ http://bizcats.blogs.com/catlines/
sign up for CATLINES and more:
http://www.catliness.com http://www.catliness.com
 
 

More information about the nfbwatlk mailing list