| Security is still a top concern for IT professionals; | | | | your organization. For example, Windows 7 |
| now that Window 7 Beta is available, questions | | | | provides greater insight into understanding exactly |
| regarding what Microsoft has done with the | | | | why someone has received or been denied |
| Windows 7 operating system abound. There is a | | | | access to specific information, as well as visibility |
| lot of ground to cover—more than we can in a | | | | into the changes made by specific people or |
| brief article— but there are three primary | | | | groups. |
| topics that merit our focus here. | | | | Streamlined User Account Control |
| - Windows 7 is built upon the security foundations | | | | User Account Control (UAC) was introduced in |
| of the Windows Vista® operating system while | | | | Windows Vista to help legacy applications run with |
| improving auditing and the User Account Control | | | | standard user rights and help ISVs adapt their |
| (UAC) experience. | | | | software to work well with standard user rights. |
| - Windows 7 helps IT control what software can | | | | Windows 7 continues the investment in UAC with |
| run in their environment with AppLocker™. | | | | specific changes to enhance the user experience. |
| - Windows 7 enhances the core features of | | | | These changes include reducing the number of |
| BitLocker™ Drive Encryption with the | | | | operating system applications and tasks that |
| introduction of BitLocker To Go™ for | | | | require administrative privileges and providing a |
| removable storage devices. | | | | flexible consent prompt behavior for users who |
| Let's take a look at each of these in a little more | | | | continue to run with administrative privileges. As a |
| detail. | | | | result, standard users can do even more than |
| Fundamentally Secure Environment | | | | ever before and all users will see fewer |
| Windows 7 builds upon the strong security lineage | | | | prompts. |
| of Windows Vista and retains and builds upon the | | | | , Service Hardening, Data Execution Prevention, |
| development processes and technologies that | | | | Address Space Layout Randomization, and |
| have made Windows Vista the most secure | | | | Mandatory Integrity Levels continue to provide |
| version of the Windows client to date. | | | | enhanced protection against malware and attacks. |
| Fundamental security features such as Kernel | | | | Windows 7 has been designed and developed |
| Patch Protection, | | | | using the Microsoft Security Development |
| , Service Hardening, Data Execution Prevention, | | | | Lifecycle (SDL), and it is engineered to support |
| Address Space Layout Randomization, and | | | | Common Criteria requirements to achieve |
| Mandatory Integrity Levels continue to provide | | | | Evaluation Assurance Level 4 certification and |
| enhanced protection against malware and attacks. | | | | meet Federal Information Processing Standard |
| Windows 7 has been designed and developed | | | | 140-2. |
| using the Microsoft Security Development | | | | Enhanced Auditing |
| Lifecycle (SDL), and it is engineered to support | | | | Windows 7 provides enhanced audit capabilities to |
| Common Criteria requirements to achieve | | | | make it easier for an organization to meet its |
| Evaluation Assurance Level 4 certification and | | | | regulatory and business compliance requirements. |
| meet Federal Information Processing Standard | | | | Audit enhancements start with a simplified |
| 140-2. | | | | management approach for audit configurations |
| Enhanced Auditing | | | | and end with greater visibility into what occurs in |
| Windows 7 provides enhanced audit capabilities to | | | | your organization. For example, Windows 7 |
| make it easier for an organization to meet its | | | | provides greater insight into understanding exactly |
| regulatory and business compliance requirements. | | | | why someone has received or been denied |
| Audit enhancements start with a simplified | | | | access to specific information, as well as visibility |
| management approach for audit configurations | | | | into the changes made by specific people or |
| and end with greater visibility into what occurs in | | | | groups. |