You are here: silicon.com > Software > Security Strategy

Security Strategy

Kaspersky attacks Vista security controls

System 'so annoying users will disable it'...

Tags: kaspersky, microsoft vista, windows vista, vista

By Tom Espiner

Published: 19 March 2007 09:05 GMT

Security company Kaspersky claims Windows Vista's User Account Control (UAC) - the system of user privileges that can be used to restrict users' administrative rights - will be so annoying users will disable it.

Natalya Kaspersky, the company's chief executive, said that without UAC, Vista will be less secure than Windows XP SP2. "Windows Vista with UAC disabled will be less secure than XP SP2," said Kaspersky. "There's a question mark if Vista security has improved, or has really dropped down."

Kaspersky provides one of the scanning engines in ForeFront, Microsoft's business security product.

Arno Edelmann, business security product manager for Microsoft, said Kaspersky's claims were surprising. "We have a thriving community of partners, and Kasperky is one of our best partners," he said. "I find their statements a little strange because they have one of the best insights into Microsoft security products."

After being roundly criticised over its security strategy in the past, Microsoft has done a lot of work to improve its approach and has been touting Vista as its most secure operating system. But Kaspersky confirmed that her analysts had found five ways to bypass Vista's UAC, and that malware writers will find more security holes.

Kaspersky also added her voice to McAfee and Symantec complaints that PatchGuard, designed to protect the Vista kernel, is hindering security companies' work. "PatchGuard doesn't allow legitimate security vendors to do what we used to do," said Kaspersky.

Symantec has claimed PatchGuard is hurting security vendors more than it was hurting malware writers. Bruce McCorkendale, a chief engineer at Symantec, said: "There are types of security policies and next-generation security products that can only work through some of the mechanisms that PatchGuard prohibits."

Tom Espiner writes for ZDNet UK

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business

Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business


  • Jobs
Security Engineer/Architect - London

Symantec). Develop and maintain technical security standards and policies. Security Engineer is required for fast paced/state of the art trading ...

Windows 7 Software Design Engineer (DAB07)

Windows Vista and Windows 7 The Role To work as part of a small dynamic team responsible for developing driver software for next generation video ...

VISTA Anlalyst Programmer

You will have experience of working with Vista Distribution systems and have experience of working with Vista 4GL programming. The Vista Your role ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.





Quick Sitemap Links: