|
|
Welcome to Vista Banter. You are currently viewing our boards as a guest which gives you limited access to view most discussions, articles and access our other FREE features. By joining our free community you will have access to ask questions and reply to others posts, upload your own photos and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact support. |
|
|||||||
| Security and Windows Vista A forum for discussion on security issues with Windows Vista. (microsoft.public.windows.vista.security) |
|
|
LinkBack | Thread Tools | Display Modes |
October 27th 06, 12:32 PM
posted to microsoft.public.windows.vista.security
|
|||
|
|||
An attack vector which Vista is supposed to withstand?
If I have a laptop with:
TPM hardware Vista with bitlocker, set to automatically boot up using the key in the TPM module Vista's default security settings, including default UAC settings and filesystem ACLs one non-administrator account in Vista, with the password written on a sticky note on the laptop one administrator account with a 20-random-character password not written down anywhere files in the administrator's home directory which contain information worth a couple million dollars and this laptop is stolen by a thief who's trying to get those files, is it realistic to expect that the thief will be unable to read them? (Assume here that attacking the TPM module itself will not succeed.) 
|
|
October 28th 06, 03:21 AM
posted to microsoft.public.windows.vista.security
|
|||
|
|||
|
An attack vector which Vista is supposed to withstand?
Yes
"Roof Fiddler" wrote in message ... If I have a laptop with: TPM hardware Vista with bitlocker, set to automatically boot up using the key in the TPM module Vista's default security settings, including default UAC settings and filesystem ACLs one non-administrator account in Vista, with the password written on a sticky note on the laptop one administrator account with a 20-random-character password not written down anywhere files in the administrator's home directory which contain information worth a couple million dollars and this laptop is stolen by a thief who's trying to get those files, is it realistic to expect that the thief will be unable to read them? (Assume here that attacking the TPM module itself will not succeed.)
|
|
October 28th 06, 03:07 PM
posted to microsoft.public.windows.vista.security
|
|||
|
|||
|
An attack vector which Vista is supposed to withstand?
Windows Vista mitigates this situation pretty well. Here are some of the
attack vectors available to the attacker: 1) Cracking the password to an account with privileges to the file 2) Privilege escalation attack - taking advantage of a bug in a windows service / scheduled task / driver / etc that runs with admin privileges, either to change ntfs permissions on the file, or other means I'd say overall the security provided by this scenario is "better than anything available with XP", but certainly not up to par for a file worth millions of dollars. -- - JB Windows Vista Support Faq http://www.jimmah.com/vista/
|
|
November 4th 06, 01:12 PM
posted to microsoft.public.windows.vista.security
|
|||
|
|||
|
An attack vector which Vista is supposed to withstand?
You can never be sure.
I keep all important data on a PGP disk. "Roof Fiddler" wrote in message ... If I have a laptop with: TPM hardware Vista with bitlocker, set to automatically boot up using the key in the TPM module Vista's default security settings, including default UAC settings and filesystem ACLs one non-administrator account in Vista, with the password written on a sticky note on the laptop one administrator account with a 20-random-character password not written down anywhere files in the administrator's home directory which contain information worth a couple million dollars and this laptop is stolen by a thief who's trying to get those files, is it realistic to expect that the thief will be unable to read them? (Assume here that attacking the TPM module itself will not succeed.)
|
|
November 4th 06, 10:56 PM
posted to microsoft.public.windows.vista.security
|
|||
|
|||
|
An attack vector which Vista is supposed to withstand?
There are two failures here, neither of which is technical:
a.. a password is written on a sticky note b.. the user of the computer (I presume the non-admin user) is allowed to share a computer with another user, who logs on as an administrator and is involved in the organization's large financial dealings Another way of diagnosing the failures is this: a.. the owner of the computer, involved in the organization's large financial dealings, operates his computer as an administrator b.. this person shares his computer with another person, who keeps his/her password on a sticky attached to the computer The correct mitigation here is to fix these problems. __________________________________________________ ____ Steve Riley http://blogs.technet.com/steriley http://www.protectyourwindowsnetwork.com "Roof Fiddler" wrote in message ... If I have a laptop with: TPM hardware Vista with bitlocker, set to automatically boot up using the key in the TPM module Vista's default security settings, including default UAC settings and filesystem ACLs one non-administrator account in Vista, with the password written on a sticky note on the laptop one administrator account with a 20-random-character password not written down anywhere files in the administrator's home directory which contain information worth a couple million dollars and this laptop is stolen by a thief who's trying to get those files, is it realistic to expect that the thief will be unable to read them? (Assume here that attacking the TPM module itself will not succeed.)
|
Linear Mode
