securityu n safety

Security and safety

Beginning in early 2002 with Microsoft's announcement of their Trustworthy Computing initiative, a great deal of work has gone into making Windows Vista a more secure operating system than its predecessors. Internally, Microsoft adopted a "Secure Development Lifecycle"^[17] with the underlying ethos of, "Secure by design, secure by default, secure in deployment". New code for Windows Vista was developed with the SDL methodology, and all existing code was reviewed and refactored to improve security.

Some of the most significant and most discussed security features included with Windows Vista include User Account Control, Kernel Patch Protection, BitLocker Drive Encryption, Mandatory Integrity Control, Digital Rights Management, TCP/IP stack security improvements, Address Space Layout Randomization and the EFS and cryptography improvements. Additionally, Windows Vista includes a range of parental controls, which give owners of a computer a set of tools to limit what other accounts on a computer can do, and an improved Windows Firewall which supports both inbound and outbound packet filtering, IPv6 connection filtering and more detailed configurable rules and policies.

Management and administration

Windows Vista contains a range of new technologies and features that are intended to help network administrators and power users better manage their systems. Notable changes include a complete replacement of the "Windows Setup" process based on Windows Preinstallation Environment (WinPE), completely rewritten image-based deployment mechanisms, a significantly improved Task Scheduler, a revamped eventing infrastructure, GUI recovery tools, support for per-application Remote Desktop sessions, new diagnostic, health monitoring and system administration tools, and a range of new Group Policy settings covering many of the new features.