Why UAC is (mostly) not a security boundary

Good article by Crispin Cowan, a security expert at Microsoft:

Making it possible for everyone to run as Standard User is the real long term security value.

It is unfortunate that Microsoft has done a poor job of articulating the purpose of UAC (User Account Control) in Vista, but good that folk like Cowan are doing it now.

Technorati tags: , , ,

Related posts:

  1. Windows security and the UAC debate: Microsoft misses the point
  2. Unanswered question: how’s Vista’s real-world security compared to XP?
  3. Vista security: now prove it
  4. Hands On with Microsoft Security Essentials – terrible name, but product looks good
  5. The end of Code Access Security in Microsoft .NET

Comments are closed.