backtop


Print 77 comment(s) - last by JMecc.. on Oct 4 at 3:34 PM

Vendors claim that being denied access to the core of Vista seriously hampers their ability to protect users

McAfee Inc. has thrown down the gauntlet in its dispute with Microsoft's decision to lock down the core of their Vista operating system. The security software vendor has a full-page ad in today's Financial Times which berates Microsoft.

McAfee argues that Microsoft is making its upcoming Windows Vista operating system far more difficult to protect by locking non-Microsoft processes out of the kernel. Symantec had a similar beef with this move by Microsoft which was reported on recently by Windows IT Pro:

Symantec has also complained about a new security feature called Kernel PatchGuard that prevents software--malicious or otherwise--from altering the Windows kernel at runtime. In the past, security companies have been forced to patch the Windows kernel because so much malicious software does so as well. That process will not be possible in Windows Vista, which should make the system more secure. Symantec wants it removed.

Microsoft claims that this will keep Vista more secure by allowing only certified programs to access vital components of Windows, but McAfee openly mocks this in its advertisement by challenging:

"Microsoft is being completely unrealistic if, by locking security companies out of the kernel, it thinks hackers won't crack Vista's kernel. In fact, they already have."

A Microsoft representative dismissed this accusation, citing a close relationship with security partners during the development of Windows Vista. On the other side of the coin, vendor Trend Micro currently has a beta release of their anti-virus software available for Vista, which may have prompted other companies to suspect preferential treatment.

A scan of the article was unavailable at the time of this posting.



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

RE: What's the beef?
By BikeDude on 10/3/2006 2:46:08 AM , Rating: 4
I share your observation that the cure is worse than the disease. I have not used security software since... Oh, 1988? Number of infections and problems? Zero. Except that one time I installed some Norton product; Inserting a floppy suddenly triggered a BSOD with NT4. I uninstalled Norton rather than install their hotfix for that particular problem.

Bottom line with most (all?) security products: You're only protected as long as you run with the _very_ latest in malicious code signatures. Miss one signature update and your life is basically hanging in a very thin thread, specially if you think you can relax on the OS updates.

Besides, if you're just a bit careful (e.g. disable ActiveX and Javascript when surfing, and refuse to open mail attachments), you've ruled out pretty much all threats. Add a simple firewall with NAT functionality, and you're for all intents and purposes sealed off from the rest of the world. (yes, there are some exceptions, e.g. the hole discovered in IE's jpeg rendering engine, but these are rare and must be patched by MS rather than Symantec anyway...)

This philosophy may not help the average user, but they're basically screwed in any case. Vista could help a lot since MS finally takes away administrator access from regular users. Protecting the kernel is a nice touch too. (and already being done in x64 XP, no?)

It is a badly kept secret that McAfee and friends are overcharging for inferior software. I hope their ad backfires.

--
Rune


"Vista runs on Atom ... It's just no one uses it". -- Intel CEO Paul Otellini

Related Articles













botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki