Why UAC is (mostly) not a security boundary
Good article by Crispin Cowan, a security expert at Microsoft:
Making it possible for everyone to run as Standard User is the real long term security value.
It is unfortunate that Microsoft has done a poor job of articulating the purpose of UAC (User Account Control) in Vista, but good that folk like Cowan are doing it now.
VN:F [1.9.18_1163]Why UAC is (mostly) not a security boundary,
- Windows security and the UAC debate: Microsoft misses the point
- Unanswered question: how’s Vista’s real-world security compared to XP?
- Vista security: now prove it
- Hands On with Microsoft Security Essentials – terrible name, but product looks good
- The end of Code Access Security in Microsoft .NET