PL  |  NL  |  FR  |  ES  |  PT  |  IT  |  DE  |  DK  |  NO  |  SE  |  FI  |  GR  |  JP  |  CN  |  KR  |  RU  |  AE

  Report this article

More information

View a Digital Image in the Vista Photo Gallery

Clip with the Windows Snipping Tool

Using Vista Sidebar and Gadgets

Set Up an ISP Internet Connection in Vista

Share an Internet Connection on a Network in Vista

Set Up a Connection to the Network at Your Workplace in Vista

Vista: Make a Dialup Connection by Using an Infrared Enabled Cellular Phone

Creating a Vista System Restore Point

Restoring Vista

Reformat Vista Drive

WINDOWS VISTA BLUE SCREEN OF DEATH

TROUBLESHOOTING WINDOWS VISTA STOP ERRORS AND BSOD's

15 MOST COMMON STOP ERRORS / BSOD's IN WINDOWS VISTA

How To Make Vista Start , Run and Shutdown Faster

Windows Media Player and Windows Media Center

Digital Rights Management Licenses and Copy Protection Technologies

If you could map out the Windows attack surface, the biggest feature in the resulting landscape would be, by far, the system and third-party services that run in the background. Services are a tempting malware target for two reasons. First, most services are "always on," in the sense that they start when Windows loads and then remain running until you shut down the system. Second, most services run with a high privilege level that gives them full access to the system. Malware that manages to get into a computer can use the system services to perform almost any task, from installing a Trojan horse to formatting the hard drive.

To reduce the chance that a malware program could turn a system's services on itself, Windows Vista implements a new service security technology called Windows Service Hardening. This technology doesn't prevent malware from infecting a service. (That's the job of Windows Firewall and Windows Defender.) Instead, Windows Service Hardening is designed to limit the damage that a compromised service can wreak upon a system by implementing the following security techniques:

• All services run in a lower privilege level.

• All services have been stripped of permissions that they don't require.

• All services are assigned a security identifier (SID) that uniquely identifies each service. This enables a system resource to create its own access control list (ACL) that specifies exactly which SIDs can access the resource. If a service that's not on the ACL tries to access the resource, Vista blocks the service.

• A system resource can restrict which services are allowed write permission to the resource.

• All services come with network restrictions that prevent services from accessing the network in ways not defined by the service's normal operating parameters.