Back to Top

Saturday, January 24, 2009

Improvement to Software Restriction Policies in Windows 7

While listening to the episode of RunAs Radio about Windows 7 I've heard about AppLocker, a beefed up version of Software Restriction Policies.

It is an interesting improvement, but I expect that it will still be enforced from User Mode, making it not as secure as it could be. Also, given the recent mishaps with certification authorities (creating rogue CA's, issuing certificates for, etc), I question the effectiveness of this method.

Finally, some time ago, when I looked at the certificates of executable files, I found a situation similar with the ones of SSL certificates: lots of different names, mixed certificates coming from the same company (including Microsoft)...


Post a Comment

You can use some HTML tags, such as <b>, <i>, <a>. Comments are moderated, so there will be a delay until the comment appears. However if you comment, I follow.