|
|
|
When Will Microsoft Be Trusted?
By: Jason Brooks
2006-05-12
Article Rating: / 0
There are 0 user comments on this IT Infrastructure story.
Analysis: As a major player in the server space, Microsoft should offer the sort of mandatory access controls we're beginning to see in Linux and Solaris. For now, though, the bulk of Microsoft's privilege management is centered on the desktop.Four years ago, Microsoft laid out an ambitious plan for building an NGSCB (Next-Generation Secure Computing Base). NGSCB was to be a trusted computing environment extending from motherboard-embedded security chips, through the Windows kernel and out to the application windows and input peripherals with which users interact with the system.
As a major player in the server space, Microsoft should offer the sort of mandatory access controls were beginning to see in Linux and Solaris. For now, though, the bulk of Microsofts privilege management is centered on the desktop.
* Reduced rights for Internet Explorer IE doesnt require all the rights of a limited user, let alone an administrative one, to do the work of rendering Web pages. In Vista, IE will run by default with less privilege rope with which to hang itself (and the system as a whole).
* A Vista for nonadmins Perhaps its silly to worry about limiting applications to the fewest privileges they require when, according to Microsoft officials, the difficulty of run-ning current Windows versions with appropriately limited rights leads about 80 percent of business users to run as admins—a management gap that Vista should help patch.
* Virtualized system file stores If you cant control exactly what a particular application is allowed to do, you can at least issue it a safer sandbox in which to run. Vista will let applications that want to run as administrators modify system files and registry keys, but do so in a branched-off, virtualized area.
* Still hankering for NGSCB? Microsofts NGSCB developers are now called the System Integrity Team, and they have a blog at blogs.msdn.com/si_team/default.aspx.
 Check out eWEEK.coms for the latest news, views and analysis on servers, switches and networking protocols for the enterprise and small businesses.
|
|
�������x}r۸j�9km"u#dKbY^�N�!c")ʜ
7]hɗ$w2c["���O�Eȹ5!�[l}ёKo
z�I�_�BZF!Cթ[2dDMs�@
;�5ӘẌZ>u3u���=�>뱒;|�9|@D��%SjL~M1f�ھl̴ d�u�c_gp��,�{
h{9Dm@�~Ս[�2�"&�Iι?�K�_s�Q{٦�IAmg|{Peh=��g;1,( �!)�/F�:��u�f
=�#�|��=VyZA/usLmqH=��U�X'�[vx>�҂_d�!gBBm׀�ͽ>HSɴ'vwg!2�5N��ZB[��$Ԉ�H'Cc7`wd�S*PTf0;kh�4Kk�c=Ƕ<ۥ:�>!�$fF&\?Z��Q��N�+�o5G)Fn�y�y�/�e[t
�̿{���Cmt3q�kE5�GlR<
=�y5oJa}zK:�ٮ���L]:e/YݞF�&kQ_�7GR,VJ.w/�J\zd�e�K<Ӱ�2ɎۛQuss�i^07AD_<�QQ)Y�mdƱ�(|ú�r�N��&Y^mM'jf-M_"d��̨�|]� P3Z$j��2�3\Pr5&Sk~�$�M�m}b.L2w2|
�u̗V/``(A/g-
�5t*軘ɛ!"ĈKn�9x��|!XsI��((�G��F�N쥲lϑy@W
]rjN+3Wr{gH�9\zmMꧭFUIz^�?uZ^]�T��364>@�,I�!eݴ%�稫ÚZ.U#+EY��\U��b�(7ZTgL-�,��1,;LtM?y۹?�x`�h
�vڌi3�ϨngfY�9z��4D�AC62^,zK �
,70}HOaI�$�p<{i.�v9s�;A �{>���}cF=Q`��I�
�l":IJ=ysc�и`ι�&vo@�@[3街�#Yӽk:��?A����&�����2/?6�f|xmG���7f`sokajC���q>�QB�jx?�k1
�)@.$tmA|t�"BђF����4� � g3cX"M"'� [AX�ʫ� a�+B
.��t@�Gҹ=�Jx_,�ib!ab -x[b�|�Lg�2+Iɤh4Z�
#�n"0�9X����
?,'Z
X��%ּ
f;Rj�hܛ��K���ܺy熩�,@�PC"�;*&���O\�sù�?:4ğ[%=ۼd���m�A
9g)��兇u�5.��dMjI3Â��MI|��Ehqt�2�j�Ծæ��ճ�\#�ݐn�h;Ͱ&PoTM?>yBO
\n�aD@W:O̗�HڦaM�boBo+څPO���_.dI�_fMb�lȔu>I!VB!7O@1wf@fmP$|r:�#w��\�~J x�zz�#Jw�Mox��=h{q#%A{���=�U檳�@:[6[�7˦�I8���ʴ.�R�U�I
Mb70�Ԣ(`|M(" !�d��s~ʹ,C�
/0\�Cb&^%xhQSpSg{`[�{jA_{ܰ큡�KQ"G&,Mc��V)9�^ǚa+ �L��2�49`/�}�"�[0P&i�^·V�vMOP9��gs?�Q,C,"�4)L6Eװ�H��RQb{ u�&��$d\�&�V,'݅Ё*814kyq?_Y�N[®tѐgcQidZ �8RcXs�P`�P݄ScHL(��`�Ƕ;3M�ĖAvQ&w�wdd{>70�M�C���LKw3:Ĥ4Qy�(sR&�4Z� @掦�턇wgH�kڸ�/|P"
8�|<׆� B9&�DBT� ��Hg��[QZ�o3C�z�o@zmy�K&� GGs�ݧ==1g���*7|o�C;@h�+|�a}��jIQ壂R.Q+7cSFOPx����x�/OQk�꿬3u^k
}\u@)�[�gn�&ڂq��ש%XTXe���1_0���a1�dxXf8��ʳ|N�R�i�@7KGѝUK)��{ ��
�"�gԦ�jg7�j@Z�_g?Z6`��:�<68)ѡ,H���r%*%Ï6ލ.�F���#F���6@\=!<��vgS�(0f�4ݤ
b�h�sֽi>O_!.B���[pkxz豸4�
QB|�Y5LQMͱ�Qž,)rWKsnxEkVv1"E����R�wa54�&Mt�8&�ʓc'WwO�}ZA�p��A HǸ}n�ۖN)X�b1�Ji�Px`�f�|li� WQJG#?0@DJ\QCV�:L\M1p
BM4�H>rcO�
|/+\L'a�C.ͼJq�i-EB�SkђX/�ps!p
B0_ \PF.^J:(�~f,/8!a�A�VY?�0�Wޟ+Kx�4ԾhuHG�V-]u?\4v&�Ӹo3)��P �K N#�bwm�RzV^6;銿F�<;o��k��"��r��Ӹz�_>wQ#rhI^GKΓ�!G�w"y!KrB�ë�='Upq)q�&�m2YG82~q�h䌞{0L�
��)䭎{l]qbiNj
�_Ok%W���7hhtq�)۵coc(
�Bb.��Bx|P\#� rG��@�R`OH5['#ySx$;)38Ǟw�}Ih��!�酘:%�e�~E/c)!Q\(��,:^58Q�%l6�>#F�E'��~�Ib
X
�x4h�+0wAइg5�q�f#��b~:)}AO-9˞�~D��nTR�7��?xKP .Mu?R�uj�ik�.NE�m�펇{-~G0��clwA��)bz�&r[4via4Sb��-ɔBB�4<�ah�2nXiYzB,cTeH�(SQ�SGI3>�e��ޞ,Hq=Ym@ylZӽK3%λƗHȃ ,-�WI+4$/AiA0'@��R�#F[�xq�'P�>�Xɫq)�h;ɫ�W~D��C.�6�OY-<` !9*l!{~TV�۾,ßQH4��S
~/#c�9ʼS�saZ� G�W�.'{�v��cNУ&k{��?�d%j)A�/ֳ|c@ל�)|s�9xf$�4NlxYwy"�x�ESrm�qmGyZ�ʲ/q>zdO1\jh��2�����CV2l8s@2s&�cx�2�C%��wVp�*'cc;ψ��F#%{kx�yS˰&l�@|Րr�hZ0q��ajcZ'8\y1�ߊ:"YcCƣdǷfm!ZP|=�ߎ9S{K�8�Wj�R*2Kp;cgS[Kϡ)9O4y˭ L H��x̛+Vx�e�[b?5| �NK�ֈ[A32O2�zM)o�,0eRKͨb�No^~yrHP~loi��5}9zJ]J=7ur�)E�FD~=saI�f>+qLa��x�64W�rl!ә__�_j4|}L�!lf����L�ٺ7�iX$dC2���lW�ǟ9K�x�ޡ(1{wmP�AP�s0g@IfɍQD�^�N�|�@̒o�)p;�Tcy¤(� ��㎘�rt4�>!/��Z�iЕMYa�3+gԷW[&�`\�*jGK3{8m&:&�Ev0�0"+�10rҩ_[S,!
�/�O�㞖�ۦ,B'�[$^?�x0F�^\E=7 �D%A�;�Y�ΑS*�(SH� /도jt$lc6..&"�t,,�r@0_X3_6 F>å'k&u�uI�1_\pi�+IWiU�&_��N.��o�;|1PDz�O l#�try~�ZլTb|&J�5�~j4Pb��rH�he[E#Y,90u�4�E=�i%5ܗ=).�y�4~yl� #�#��aH�&Yʥ�xw�|R"@ÎCVVuWw/)T_O֥\da�$0� �`U0t=]H;'S*4 ҉�=Ė�چIW ORQ)�0<%�p1+߾O�0�=�{�Dqx?Gfy[?�ib�DY!O�5%X��<*af� K�Ci\IBxZUj�Ir$�K8X@$K�wAψ�=OAI /?&+dhR&˜�%M�%JN=
rR^4Fn/� <၊.H ��y}/IT&p,I<2wb&*9@6i�
iJM{fX0�\VJ4k/l�4�>>$���l���
VHwE~ψ�_ςs@ٝ|¶[z�S"�^Nd)/l3Fg[��\$Np�C�ÛÛÛÛr^QOGꁮj}l�+ck%u� ܇]��?ui7
j\]RW�/8$Ä-�" Z a�$-l.kE9q�9T�([R[$M�"+܀1fv;^.�eAY4_x.9\}�,omדR(6Pe0LJy(�P��\@'�<ڙ'$�t|՟�bK|6/|r9ƢL���K+L\Y��QF+:�U͑,$^9$g���B��!|��a��ͤycw&'+Qa0gBZ@mI�x�:դ��l&!�0�HgAߙM�Uxu@o9?>5,4��ۣxG�s3{ƼOa��ȃyQ�$�&`sD?
=�f^ߒ~~hxXz,R'0�|=�1aJ,�3E5a6h˺5\b7ȷ֭fy~�~6Pa~'�p�G< �'�S!#xdxdxdxd#l�}{dĒn�|�ilҥ>>ZR�H�{mI�٥E/n�ŭ�
1ַ}<(7Sm۾4?9[8(];KOMmdo�|h~ndoK� y�יǎ>rBn3V^ޙ82l^�n"t�^tfP-o={K(IH���k?`q>4��^f
U"VØP�V�<�2�Q)}Ԃ g��s.=�݆��aw^"<�#�,�S���}]�oR
>ٷRb0SO�,^@�QJ nd_�nè>8(<�˂�Y*cSW_�f�mb
��}c�xqַ}adwdP5�apdi��R� �ߧ}{m)K.bw7O�k�р=��{P.ޫ�-�`
�'?[/�=pXc3�L\7=!p��wB/̤��'��"]�ޘtyk�BVpΠ�k?0��Rۘpxm&n$%�?۾f^�a+m�T$�U-1Oŋj;Ws`̫VƑe]:�x%RPSW36}izL]O5�zl¯�B�I��f#e։
V(��dL^��3ƚe&*5�6W9(�z3^~/u~q,u}ɼ
h
\F�ܓվɁa4XD�)Zap�]?�r�EcÈc.amaW�wKgg�τ=!�;n<�JcT,�+ʚrMdo
@`ׂp�~OSHj�C@�O��^�a"�.+>��l?�Q�Xv��
�
$oݙf�=H�+:Ŷ?�dn)�jX�z>I�Tfp]jh�X*ݸHd�m|[%_.#5+*RY\Cj�<�P\�nF¼1�Ȑ%E4jѣ�n#/D#��y�Rb-5���.�6�K&,�'�e؈>PPG(0jr;
{|^���`y ���z9}j4֛�k�t P�p���a
;�^`w�!� �,cl
�Œ&/0ۑpspm[,&{5�y
ha�"_`�9Be{Ω�� ʒ2?؞�L6�mQQ1ֶ\rK(FLLA��9,2��a� �0m&:�Iϡ� �j3?b)_b~u�.;s�Y�l�'Zvv.f�63ZN
B\Xz�L\1E�sMD��F��P#�S�C��46I$Ae�Ѕ5T?�0@^\~�nKj%(��5���U@D8AnI�0YI}L>�oI c
�r�t�w'WA|$Gp�
=<|6�ڄy�k_i8�Y&�eur+73tݤ!2K=�o /;�B�X�JW@7��}�H['ɍ���㏖+623!�X�����w�p[{F\{~uC��@.6���搁u�Y�a��d�Pֺͨ~uUsy�DT/ROaH�9P=SqbX"�d\1��Q(pxi|z��wV�cn�O�KZ��
�5"��|��TmD��)��0�09g�1;DT�~�7�%cc_Z|�,�{{GǙ;fRfWs�ھQ��?�!��S)Aw�0\�pnb�6X`��k,2E<�Cezw?,�G9G~n295:�R���� %k;z�6t V�t#ߛ�jw�ӟ{,ȏefĶnN���KL B����H$bax=9`51@<dwȓYFa�P8�\
��+z*J9W��&u%O�<�weX
z_A�x3N)'
FJy�ʻ)HMAR~�'O�?)y�w�v~\nbr_;i_C)R?A�<�>hz'e~:0N;���Io�IO�I��賓B�N
}"^#L)?@?R;PI)H��H..ȟn|ȗK�/S�J�2�2>_?m.�!>BǴr�ǔ}�}L5_�^55u
u$!(oY��NOoX�8)L8^%�ia uqR^�yVAy
JM�,c/S\gL� K�SԿ72~2A?/OBX\Jrp+Wg^fan4�vIAʰ[/6�^c/��K^浽Id<$x�%GW48<1X!t�nmTl<-u&l\a f(-�@B�^�t
p�ayF[�zY.U~_c�냫n=� �ZY->¯)x}t1�1)�#aG��퉷4455~�ɱiL(1�k�DF(d#B,"���DϷLT zZ�O]�n,0�^z#;qoFmk_V�`�ń��l[lҪ$��@���X%nD�{1ߠ6�yJ>?�h
%;\6$DR��}J�0zN]�j?N9DeP�^�~/;vc3)f��GNFp)�N��BA��r,C��v
ǯ-�Ǭ�yvJn�Qt�7tlm"�@�;�� �7=�Tx�
�` GY�u`�Kr
�8ǩ=b��huq#��ƫ14�cBT�ȟc�to@L?V!?c]'nFQ�MF:®54Mm���veѩ&�ߩn3QaW_<6tc�bS,ۙD
ya1 g'{y�{~k��'>f
iln,e�`YX&�5DI3/O�B�7Ѱ0K{,luE�E%%���XbFCa
�0A���:p 1>.O�h<�4W�6AĶq��yn6т���ˉ,X)�>�)*wI&�x�+[ЀH>Y[PE"�1s0�KN�=�>_5>gzC�%�>��Znj0.~v0/�渲X�>�e5r�5`=�d��^}�]x�
O!�eW�PR
Y
-f�1!IDb(8)�ҁCCĜR!E´�#Dx1L(�]@,�6�u!;x�Z~Ƌ{�
El>�GNDN<<�*IDy�)�V@��Ok�|I>"�: X��+.9�
7ʝX{YB(O�}i:!#uu�*`'gG�VP�vQ��
K=̬�q';�]d¦[HP�Hk#k�jY8k�,��
|
IT Infrastructure 
