In the Windows 7 system, the user's deepest security feature is User Account Control (UAC). All user accounts (including administrative accounts) are run in standard user mode by default, and if you perform higher privileges, you also need to increase the mode, that is, we often have to wait for the system to jump out of the administrator permission prompt interface, click once more. Be sure to proceed to the process that should have started as early as a few seconds ago. This feature does not actually take into account the user experience, so it is a big failure of Windows 7. Of course, it's no doubt that Windows 7's security performance is indeed more advanced than previous operating systems, disk encryption (BitLocker), parental controls (parental controls), built-in anti-malware program (Windows Defender), improved windows firewall, Data Execution Protection (DEP), Protected Mode Internet Explorer, Service Enhancement, Digital Rights Management, Crypto API, and Network Access Protection (NAP) client functions, Encrypting File System (EFS), etc. There are significant improvements, and there are many software restriction strategies and other security enhancements in Vista. Additional security-related improvements have been added to SP1, including BitLocker's multi-factor authentication, redesigned random number generator (RNG), and remote desktop protocol files. Now, the challenge for the Win7 team is how to make the operating system as secure as Windows 7 (or more secure than Vista), while at the same time making security features more visible to users in a more transparent and convenient way. Let's talk about the features of Win7 in security and convenience. 1. About Security Center The Security Center in Windows XP SP2 system (operating through the control panel) is designed to provide a centralized management center for managing security-related settings, and this continues into the Vista system. However, in Windows 7, there will be more centralized management, the Security Center will no longer exist, and replaced by the Action Center. In the Action Center, you'll find that the information sent by the alerter is not just a security alert, it will also involve Windows Update, Diagnostics, NAP, Backup, and Restore, as well as failure issues. 2. More flexible UAC settings in Action Center In Windows 7, you can disable UAC through Group Policy, but this is not desirable because it is easy to attack the system, or you can set UAC to No prompt message pops up. However, the Home Edition of Windows 7 does not include the Group Policy Editor, so users must disable the prompts by editing the registry. However, in Win7, users can more easily control the functions of UAC. IT administrators can rest assured that users without administrative privileges cannot change UAC settings. In the left pane of the Action Center, you can see that there is an option labeled Account Control Settings. The following four options can be used to select the UAC prompt behavior (by adjusting the slider): · Always Notify( Always notify): UAC prompts ·Notify Only When Programs Try to Make Changes will appear when you install the software or update the system: only when the program asks for elevated permissions , but the user's changes to the Windows settings will not be notified (this is the default) ·Notify Only When Programs Try to Make Changes (Do Not Dim the Desktop) (only when the program changes (not dim the desktop)): Same as the default, Secure Desktop will be disabled when prompted, · never notify: no prompt when users change Windows settings or install software (not recommended) 3. BitLocker Disk Encryption Enhancements Vista Enterprise Edition and Ultimate BitLocker in the version allows users to encrypt the entire volume, using AE S, or use a Trusted Platform Module (TPM, Trusted Platform Module) chip on some computers and a USB key to encrypt. These methods prevent unauthorized booting of the operating system or accessing data on encrypted volumes (for example, by installing a different operating system for unauthorized users to launch it), which is especially useful for portable systems that may be lost or stolen. Originally used only to encrypt the volume on which the operating system is installed, SP1 adds the ability to encrypt multiple fixed disks, but users cannot use it to encrypt removable disks. In Win7, the feature-enhanced version of BitLocker supports encryption for portable hard drives and flash devices. This feature is also known as “BitLocker to Go”, which is what many companies have been expecting because of the preservation of sensitive data on USB keys. It has become popular. You can also set a recovery button to ensure that the disk is decrypted when the password is forgotten. The recovery button can be saved to a file or printed out and stored in a safe place. Encryption may take a while, depending on the size of the disk, it takes about 9 minutes to encrypt the 2GB USB key, and you can get the time information through the schedule, Group Policy - AppLocker. Win7 also has another "Locker": AppLocker, which is a new group policy feature that allows administrators to control the version of the application that users can install and use, which can effectively prevent users from installing and running older. Version of the application (possibly with security holes). 4. Biometric Framework Biometric Framework In Vista, if you want to use a fingerprint to log in, you must use the software provided by the fingerprint sensor vendor. The new security feature provided by Win7, Biometric Framework, provides native support for fingerprinting devices and makes it easier for developers to incorporate biosecurity technology into their software. Users can find the Biometric Devices option in the new control panel, which allows users to manage fingerprints. The biometric device can be set up to allow users to log in to Windows or use a biometric technology domain, and each user can set a different finger. Note: So far, the fingerprint sensor is the only biometric device supported by the Windows Biometric Framework. Windows Biometric Service (WBS) is the framework for managing fingerprint readers and acts as an I/O agent between the client program and the biometric device, which protects user information by not directly accessing biometric data.
Method 1, 1, directly in the lower right corner of the Win7 system, select the power plan, then lef
With the advent of the Internet age, computers have become an indispensable device in peoples lives
1. Open Thunder download, after opening our download task, click on the bottom of the Download Prior
Is it not a rare thing to delete the wrong documents in our daily life? But as long as i
How to open the Win7 taskbar window using Group Policy
How to turn off touch screen in Win7
Win7 system boot prompt TpKnrres.exe - damaged image how to do
Multi-purpose Win7 browsing picture tool
Method for optimizing switch speed under Win7 system
Win7 disk icon is gone, how to do
Win7 remote desktop connection
Win7 system boot error svchost.exe how to deal with it
The Internet option of the browser in win7 can not be opened
Win8 does not have permission to delete files using RD command. Method
Solve the "reject access" error in the win7 system wake-up sleep state
Introduction to Windows 7 Adding Network Printers
How to set up Win7 gateway? How to set up a gateway
Search history removal tips (1)
Win10 Tip: Add Administrator Permissions to the right-click menu of the PS1 file.
Resolve IE11 browser QQ space can not upload pictures
Close the two solutions for win10 push service