• Windows 7 UAC Debate Explained

    by  • February 5, 2009 • Uncategorized

    That darn UAC function just can’t stand to not be the center of attention. It has been one of the most talked about features of Windows Vista – good, bad, or indifferent as your point of view might be- and now it has more or less dominated the discussion of Windows 7 for the past week.

    Windows 7 Beta testers have pointed out that the default setting for UAC in a Windows 7 installation leaves it ‘vulnerable’ to malware altering the UAC protection level or disabling it entirely without the user’s knowledge or consent. They then also pointed out that the way UAC manages Microsoft-signed code by default could be potentially exploited by malware to cause malicious code to run without triggering any UAC warnings.

    Microsoft has responded that the functionality of UAC in Windows 7 is by design in response to the mountains of feedback they have gotten on UAC from customers and from the field. They have also countered that while the claims mentioned above are true neither provides a plausible method for how said-malware would get on the system in the first place. Microsoft contends that the default UAC setting will alert or notify the user if such malware tries to run on the system and that only explicit acceptance of that UAC warning would make the other two issues mentioned above viable.

    Rather than me blathering on further about UAC in Windows 7, I recommend that you read this post from the Engineering Windows 7 blog. Jon DeVaan does an excellent and eloquent job of explaining the reasons why UAC works the way it does, and the reasons why Microsoft does not feel that these issues are as critical as the blogosphere has made them out to be. DeVaan provides a detailed look at how UAC works, and an explanation of the purpose of UAC. In general, this is an excellent post. It clears up misconceptions. It shows that Microsoft is listening and responsive, even when they don’t ask ‘how high’ and go re-engineer features.

    Windows 7 represents a great new direction for the desktop operating system. But, as important, or even moreso, to the success of Windows 7 and Microsoft in general is the shift in Microsoft’s mentality toward its customers and the IT Pro community. The open communications and responsive dialogue will go a long way to strengthening their reputation and their relationships with customers.

    About

    Tony has driven security policies and technologies for antivirus and incident response for Fortune 500 companies, and he has been network administrator and technical support for smaller companies. He has written for a variety of other Web sites and publications, including BizTech Magazine, PC World, SearchSecurity.com, WindowsNetworking.com, Smart Computing magazine, and Information Security magazine. Tony is a CISSP (Certified Information Systems Security Professional) and ISSAP (Information Systems Security Architecture Professional). He is Microsoft Certified as an MCSE (Microsoft Certified Systems Engineer) and MCSA (Microsoft Certified Systems Administrator) in Windows 2000 and an MCP (Microsoft Certified Professional) in Windows NT. Tony has been recognized by Microsoft as an MVP (Most Valuable Professional) in Windows security since 2006. In addition to his Web site and magazine contributions, Tony was also tech editor of PCI Compliance (ISBN: 1597491659 ) and author of Essential Computer Security: Everyone’s Guide to E-mail, Internet, and Wireless Security (ISBN: 1597491144), coauthor of Hacker’s Challenge 3 (ISBN: 0072263040) and a contributing author to Winternals: Defragmentation, Recovery, and Administration Field Guide (ISBN: 1597490792), Combating Spyware in the Enterprise (ISBN: 1597490644) Syngress Force 2006 Emerging Threat Analysis: From Mischief to Malicious (ISBN: 1597490563), Botnets: The Killer Web Applications (ISBN: 1597491357), and AVIEN Malware Defense Guide for the Enterprise (ISBN: 1597491640).

    http://www.tonybradley.com