StatCounter


Sunday, October 18, 2009

Use Norton user account control (UAC) instead of Vista UAC


User Account Control (UAC) is a security feature of Microsoft Windows Vista that changes the architecture of the access token creation process and prevents users from logging on with full administrative rights.



While the intent of this feature may have been enhanced security, all too often users need administrative rights for routine tasks like installing/updating programs and changing operating system settings. Additionally, many software applications need the appropriate access to run properly. This leads to poor user experiences because UAC always prompts the user on every administrative task. The prompts are slow to display and appear frequently without warning. Also, UAC prompts are confusing and do not provide users with any recommendations. This actually raises security concerns because prompting the user for every action with the intent that the user misses nothing is a false security model. The more a user is prompted, the more likely it is that he or she will dismiss the prompt without reading it.

The net effect is that many users find the UAC security clearance/prompting process annoying, especially those who are a given computer’s sole user and are running the latest Norton Internet Security software.


The Norton User Account Control tool will replace parts of the Windows Vista UAC system. It will utilize the UAC security feature from the Windows Vista architecture, while simultaneously improving user-friendliness significantly. The tool prompts recommendations based on an assessment on the user-action i.e. the signature information of the executable. The tool also has a “remember me” feature that allows users to suppress future prompts from the same action.

The goal of this tool is eventually build a white-list (as well as black-list) database on various administrative actions, and to enable users to make smart decisions without unnecessary prompts, using prompts only as a last resort. The prompt will provide users with as much information as possible, as well as recommendations on the action requested. The Norton User Account Control tool will collect user input as well as information about the application that causes UAC prompts. This data will be processed to help build and improve the comprehensiveness and robustness of the white list.

0 comments: