14 DAY TRIAL // Windows Vista is top dog. And with its latest Windows operating system, Microsoft has begun to strongly enforce limited privileges for users as a standard of functionality. This strategy is designed to add to the operating system's security by placing the end-user firmly in control of the processes that attempt to modify critical areas of Windows Vista. With the introduction of User Account Control, all Windows Vista users run with standard user administrative privileges.
Microsoft has taken it one step further through the voice of Peter Watson, Chief Security Advisor for Microsoft Australia as cited by Builder.au and stated that Vista's UAC should become a standard for the development of operating systems, as well as of applications for the operating systems.
"There has been a lot of misunderstanding in the market around User Account Control (UAC) and how that function actually works. If you look at it from an architectural direction User Account Control is a great idea and strategically a direction that all operating systems and all technologies should be heading down," Watson revealed.
Vista's UAC directly impacts the users of the operating system as they no longer run with full administrative privileges and, as such, are limited by default from performing certain actions. This aspect has stirred up consistent criticism, but all complaints faded with the increasing adoption of Vista, as UAC is not even a minor inconvenience, but a welcomed addition. A downside to this technology is that users could simply agree to any privilege escalation without actually focusing on the warning message in the UAC prompts.
The most important aspect of the User Account Control is that application developers will begin building programs designed to run for non-administrative users, therefore limiting the impact of third-party vulnerabilities in Windows Vista. Although UAC is not a security feature yet, nor does it offer process boundaries, Watson's conclusion is that all operating systems should aspire to the User Account Control in Vista.