| There are number of security features in Windows | | | | when the machine is in unauthorized hands. By |
| Vista. Most of which are newly introduced in this | | | | encrypting the entire Windows volume, it prevents |
| version. Along with them old security features also | | | | unauthorized users from accessing Windows file and |
| available with some advanced protection mechanism. | | | | attempting the offline viewing of information on the |
| UAC (User Account Control) is the most significant | | | | secured drive. |
| security update in Vista. With this feature, all users, | | | | The Encryption File System (EFS) is a powerful tool |
| including users with administrative privileges, run in a | | | | for encrypting information on client computers and |
| standard user mode by default. When any action | | | | remote file server to protect them from unauthorized |
| require Administration privilege such as software | | | | users. EFS support storing user keys as well as |
| installation or changing system setting, Windows | | | | administrative recovery keys on smart cards. If smart |
| prompts for Administrator authentication. This security | | | | cards are used for logon, EFS operates in a Single |
| implemented in Vista to protect your computer from | | | | Sign On mode, where it uses the logon smart card for |
| malware software. If any of those malware | | | | file encryption without further prompting for the PIN. |
| softwares tries to change any setting or install any | | | | The Client Side Cache, which stores offline copies of |
| software in your system, they will be prompted for | | | | files from remote servers, can also be encrypted with |
| consent first. System administrators also have the | | | | EFS. |
| option to configure the system to require an | | | | Another way that malicious software makes its way |
| administrator password for such elevations. | | | | onto a user's machine is by taking advantage of buffer |
| Microsoft added another layer of security 'Windows | | | | overruns. Address Space Layout Randomization |
| Defender'. Windows defender going to scan the | | | | (ASLR) is a defense capability in Windows Vista that |
| system periodically to detect spyware, addition to that | | | | makes it harder for malicious code to exploit a system |
| it includes Real Time Security Agents which is going to | | | | function. Whenever a Windows Vista computer is |
| monitor the important settings of the systems if there | | | | rebooted, ASLR randomly assigns executable images |
| any system configuration changes caused by | | | | such as DLLs and EXEs to one of 256 possible |
| spyware. | | | | locations in memory. This makes it harder for exploit |
| Windows vista introduced several parental controls. As | | | | code to locate and therefore take advantage of |
| an administrator it is possible to locking web content | | | | functionality inside the executables. |
| and limit web browsing to only Kids website. As well | | | | It is very common in office environment that somehow |
| as controlling based on categories such as | | | | malware got into one of the systems and from there |
| "Pornography" or "Chatting" and so on. Administrator | | | | malware spread into other systems in the local |
| can restrict other users from executing certain | | | | nework. To avoid those circumstances vista |
| programs. Also there is option to restrict certain hours | | | | introduced Network Access Protection(NAP) that |
| of the day when gaming or other activities are | | | | performs computer health policy validation. Independent |
| permitted. | | | | hardware and software vendors can plug their |
| It also introduced BitLocker Drive Encryption to protect | | | | security solutions into NAP, so IT administrators can |
| data from a lost or stolen computer. There is a big | | | | choose the security solutions that meet their unique |
| threat of data theft or exposure from lost or stolen | | | | needs and NAP helps ensure that every machine on |
| computer. Data on lost or stolen machines can often | | | | the network makes full use of those solutions. |
| be viewed by installing a different operating system. | | | | Vista also includes the much improved Internet |
| BitLocker Drive Encryption is a hardware-enabled data | | | | Explorer 7, which includes more than a dozen new |
| protection feature that helps protect data on a PC | | | | security enhancements. |