Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft

Microsoft

Disabling Mandatory Kernel Mode and Driver Signing In x64 Vista

Via documented methods

By Marius Oiaga, Technology News Editor

10th of February 2007, 11:15 GMT

Adjust text size:


64-bit Windows Vista kernel protection is divided into two dimensions: PatchGuard and Mandatory Kernel Mode and Driver Signing. Kaspersky has made their perspective on the Kernel Patch
Protection public, calling it more of a joke than a serious security barrier against rootkits. And the Mandatory Kernel Mode and Driver Signing was not overlooked by the Russian antivirus maker.

Kaspersky revealed that there are a set of documented methods designed to disable signature checking. With x64 Vista, digital signature for any module or driver at kernel level is mandatory. "There are several documented methods for disabling signature checking, among them methods which are designed to simplify the driver development and testing process. This is because the issue of how to develop drivers is real - it's impossible to ask for a digital signature for every build prior to testing - which is why there are several ways to disable signature checking," stated Alisa Shevchenko, Virus analyst, Kaspersky Lab.

In this regard, connecting a system debugger, booting into a mode with no drivers control or monitoring and enabling support for test signatures are all valid methods of disabling Mandatory Kernel Mode and Driver Signing. Kaspersky claims that the methods of disabling Mandatory Kernel Mode and Driver Signing are not limited to these three examples and that there is plenty of room for experiments.

"We anticipate a multitude of methods designed to get around kernel mode protection by loading unsigned components. Once again, the verdict is the same: yes, this function protects the operating system against malicious code, but it is not as effective as the developers claim," Shevchenko concluded.


Rating:
Good (3.2/5) 8 vote(s) so far    

Read by 9,963 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Windows Vista Maximum Supported RAM

Download the Windows Vista DVD Covers

Windows Chief to Retire Following Vista's Release

Vista Is Live - Buy and Download Now from Windows Marketplace

Windows Vista International

Windows Vista Will Not Be the Last Client OS from Microsoft

Vista Ultimate Extras Live Via Windows Update

Microsoft Unveils Migration Tool for Windows Vista

New Windows Vista 3 Ways Crack

Ballmer + Vista Failed to Gather a Crowd

The $500 Million Windows Vista "Wow"

Vista Retail DVD on Pirate Websites

Clean Installations of Windows Vista

NVidia Getting Sued over Vista Drivers

Microsoft Takes on the Toughest Job

Crack Available to Install Windows Vista with Only 256MB RAM

NASA Looked Into Windows Vista BitLocker Loophole

PC Sales Skyrocket Following the Release of Windows Vista

Installing 64-bit Vista Upgrade Requires a 64-bit Operating System

Vista Upgrade Kills Windows XP

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive