Microsoft reveals Vista security plans

Microsoft reveals Vista security plans

Summary: The software giant plans to put an increased emphasis in Vista on whitelisting, DRM additions and authenticating code


Speaking at the RSA Conference in San Francisco on Wednesday, Microsoft's director of program management for Windows security, David Cross, said there would be an increased emphasis in Vista on whitelisting, a technique which allows only a specific list of programs to run on a system.

"Whitelisting complements signature detection and allows people to build improved systems-management tools," said Cross.

Microsoft will devote funds to hardening the Vista platform and will develop kernel mode extensions. More money will also be spent on User Account Control (UAC) and authenticating code via a process called "code signing", added Cross. 

"We'll see code-signing support added to more scenarios, like UAC, and that enforcement will extend over time," said Cross.

Technical protection measure attestation, a way of enforcing copyright, will also be added to Vista digital-rights management. 

Topic: Operating Systems

Tom Espiner

About Tom Espiner

Tom is a technology reporter for He covers the security beat, writing about everything from hacking and cybercrime to threats and mitigation. He also focuses on open source and emerging technologies, all the while trying to cut through greenwash.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to start the discussion