Follow Us
RSS FeedOperating Systems

Top security features in Windows 7

Microsoft OS contains clever tricks to stop hackers

By | Network World US | Published 14:00,

Businesses are eyeing a transition to Microsoft Windows 7, and with a wealth of security features that are part of it, it's worth figuring out the good and bad about each of them, says Gartner analyst Neil MacDonald, who notes in some cases, third party security products might be the better fit.

The AppLocker feature in Windows 7 offers an application control capability that lets the IT manager set up a list of applications allowed to run, said MacDonald in his presentation at the Gartner Summit & Risk Management Summit 2010 last week. Often called whitelisting, this type of security control offers a possible lock-down technique, but the downside is that applications used within organisations by employees tend to grow, "and the trick is managing the whitelist over time."

Also in this channel
Related Articles
Wikileaks

Wikileaks

Wikileaks - fearless whistleblowers or irresponsible nuisances? Keep up to date with the latest developments. Read more

"Care and feeding of the whitelist becomes cumbersome over time," MacDonald said, noting that there are several vendors in the application-control market, including Bit9, CoreTrace and McAfee (which acquired SolidCore).

BitLocker, Microsoft's full-disk encryption capability for protecting system files and data, will be another security feature that businesses will want to evaluate in Microsoft Windows 7, MacDonald said. Calling it "good but not great," he noted that on the minus side of BitLocker, it has no self-service key recovery, no Windows single sign-on, and no smart card support for boot drive.

"By licence restriction, it cannot be used where operating system virtualisation is used," MacDonald pointed out. In addition, there's no support for non-Windows machines or Windows Mobile.

"It's another of those good but not great technologies," MacDonald said. "You should be encrypting all mobile devices."

Enterprises might want to look at product alternatives, including McAfee Safeboot, Sophos-acquired Utimaco, Credant Technologies, and PGP and GuardianEdge, both of which Symantec recently announced it was acquiring.

1 2 continued on page 2 »

Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Does remote working affect how often you print?

Question of the day!

Does remote working affect how often you print?


% of Computerworld UK readers agree with you


Yes
TBC
No
TBC

What steps are you taking to address how/when/what you print?

123 characters remaining

Follow the conversation at @Think_Print

ComputerworldUK Knowledge Vault Hover to expand
Advertisement
X ComputerworldUK Share
Newsletter
Open
* *