Maintaining robust IT security truly is a moving target. Even as systems and processes grow more secure and sophisticated, hackers grow ever more ingenious in their attempts to infect business infrastructure and spread malicious code. Although no system is 100 percent secure in all circumstances, Microsoft's Windows 7 Professional Edition represents a large step forward in terms of IT solutions for computer security. Several of its innovative features will help managed programs staff to protect the systems in use better at the businesses they assist.
1. User account control
First introduced in Windows Vista, UAC allows users to grant specific permissions for programs to install or make system changes. This is a huge advance over the previous approach, which often required users to grant blanket administrative rights. Having UAC in operation means that configurations cannot be changed by programs without a human actor verifying that the change will be allowed. UAC can also be switched off during times when this higher level of security may not be needed.
2. Safe unlinking
Windows 7's kernel now features a protocol known as safe unlinking. This technical improvement in the system helps to prevent some of the more commonly utilized attack routes hackers employ, such as pool overruns.
3. Encrypting file system
Previous versions of windows encrypted an entire hard drive at once. In contrast, the EFS system encrypts items on an individual basis, which gives users more flexibility in using encrypted files. For example, a given employee may have the keys to open some files but not others, ones that originated in a different department. EFS uses several different algorithms for encryption, among them elliptic curve cryptography and Advanced Encryption Standard.