About the introduction of Windows7 security

A system is good or not, the most important thing is the security and stability of the system, but many people only pay attention to the system's effect, but win7 can be effective Safe and ok. In the Windows 7 system, the user's deepest security feature is User Account Control (UAC). All user accounts (including administrative accounts) are run in standard user mode by default, and if you perform higher privileges, you also need to increase the mode, that is, we often have to wait for the system to jump out of the administrator permission prompt interface, click once more. Be sure to proceed to the process that should have started as early as a few seconds ago. This feature does not actually take into account the user experience, so it is a big failure of Windows 7.

Of course, it's no doubt that Windows 7's security performance is indeed more advanced than previous operating systems, disk encryption (BitLocker), parental controls (parental controls), built-in anti-malware program (Windows Defender) Improved Windows Firewall, Data Execution Prevention (DEP), Protected Mode Internet Explorer, Service Hardening, Digital Rights Management, Crypto API and Network Access Protection (NAP) client functions, Encrypted File System (EFS, There are significant improvements in aspects such as Encrypting File System), and there are many software restriction strategies and other security enhancements in Vista. Additional security-related improvements have been added to SP1, including BitLocker's multi-factor authentication, redesigned random number generator (RNG), and remote desktop protocol files.

Now, the challenge for the Win7 team is how to make the operating system as secure as Windows 7 (or more secure than Vista), while at the same time making security features more visible to users in a more transparent and convenient way. Let's talk about the features of Win7 in security and convenience.

1.About Security Center

The Security Center in Windows XP SP2 (operating through the control panel) is designed to provide a centralized management center for managing security-related settings, and this is also Continue to the Vista system. However, in Windows 7, there will be more centralized management, the Security Center will no longer exist, and replaced by the Action Center. In the Action Center, you'll find that the information sent by the alerter is not just a security alert, it will also involve Windows Update, Diagnostics, NAP, Backup, and Restore, as well as failure issues.

2. More flexible UAC settings in Action Center

For Windows 7, you can disable UAC through Group Policy, but this is not desirable because it is easy to make The system is under attack, or you can set UAC to not pop up a prompt. However, the Home Edition of Windows 7 does not include the Group Policy Editor, so users must disable the prompts by editing the registry. However, in Win7, users can more easily control the functions of UAC. IT administrators can rest assured that users without administrative privileges cannot change UAC settings. In the left pane of the Action Center, you can see that there is an option labeled Account Control Settings. The following four options can be used to select the UAC prompt behavior (by adjusting the slider):

· Always Notify: UAC prompts appear when you install software or update your system

·Notify Only When Programs Try to Make Changes (not only when the program changes): There will be a message only when the program asks for elevated privileges, but the user's changes to the Windows settings will not be notified (this is the default)

·Notify Only When Programs Try to Make Changes (Do Not Dim the Desktop) (Not only when the program changes (do not dim the desktop)): Same as the default, Secure Desktop will be disabled when prompted,

· Never notify: When the user changes the Windows settings Or do not prompt when installing the software (not recommended)