Thursday, February 05, 2009

Engineering Windows 7 : Update on UAC

Read this post if you find any of the recent stories suggesting Windows 7  may be a step backward on security plausible

As people have commented on our current UAC design (and people have commented on those comments) it is clear that there is conflation of a few things, and a set of misperceptions that need to be cleared up before we talk about the engineering decisions made on UAC. These engineering decisions have been made while we carry forth our secure development lifecycle principles pioneered in Windows XP SP2, and most importantly the principle of “secure by default” as part of SD3+C. Windows 7 upholds those principles and does so with a renewed focus on making sure everyone feels they are in control of their PC experience as we have talked about in many posts.

Engineering Windows 7 : Update on UAC

Post a Comment