Windows 7 security ‘still has room for improvement’
By Asavin Wattanajantra,
A Sophos engineer has said he is ‘impressed’ with Microsoft’s focus on security with the upcoming Windows 7, but said it still has areas to be concerned about.
In a blog entry, Sophos global sales engineer Chester Wisniewski highlighted a feature that he felt would be a “regression” from Windows Vista.
Previously in Vista, a user would be confronted with a red shield and pop-up alerting them if they were not carrying anti-virus. However, Wisniewski said that in Windows 7 it only showed a flag and a “tiny” red X to indicate something is wrong, with no pop-up.
He said: “Considering immediately on first login, Microsoft provides a dire warning about ensuring you have anti-virus protection, I find this a step backwards."
“Why have they regressed?,” Wisniewski wondered.
He also said that ‘extension hiding’, where file extensions such as .EXE were hidden by default on Windows, needed to “go away”. Wisniewski said that malware authors could take advantage of it, by as F-Secure describes it: “creating malicious files with double-extensions”.
Despite the criticisms, Wisniewski was generally positive about Microsoft’s attitude to Windows 7 security.
He said the ‘Windows Biometric Framework’ was a “step forward”, which gave Windows 7 users alternatives to passwords when it came to authenticating themselves. However, this will only support fingerprint readers at launch.
Wisniewski praised ‘Bitlocker To Go’, which will give Windows 7 users the ability to encrypt removable storage such as USB sticks, and also the way it allowed older systems such as Windows XP and Vista the ability to access them.
Wisniewski was also encouraged by User Access Control, which focused on removing annoying prompts for non-Microsoft published applications.
He said: “This should better mirror the Mac OS X and Ubuntu Linux experience, providing the user with an opportunity to read and understand actions asking for approval, rather than clicking 'yes' to get rid of the nagware.”
Microsoft has not replied to request for comment at the time of publishing. Windows 7 will be out on 22 October - click here for our review of the Windows 7 beta.
You may also like...
advertisement
Latest Security Features
Q&A: The ID card commissioner talks cards and controversy
We spoke to ID card commissioner Sir John Pilling about his thoughts on the identity scheme and why we might all think he's a bit of prat down the line.
- So you've been hacked, now what?
- The problems facing Internet Explorer
- Year in Review: 2009 in your words
- Top 10 security predictions for 2010
- Year in Review: Top tech stories of 2009
- The worst IT disasters of 2009
- Five free security software suites
- How to stay safe shopping online
- Is it time to switch to IPv6?
Latest Security Reviews
Symantec Backup Exec 2010 review
Rating: 
advertisement
Most popular
- Google updates Chrome, awards security bonus
- Why is Microsoft accelerating Service Pack 1?
- Report: Macs cost less to run than Windows PCs
- Your Views: Google Street View across the UK
- Q&A: Conrad Wolfram on communicating with apps in Web 3.0
- O2 condemns 'bullying' law firms for threatening file-sharers
- Windows Phone 7 review ? hands on
- Dell Vostro V13 review
- Digital Economy Bill to cost ISPs up to £500 million
- Reviews round-up: Windows Phone 7 and Firefox Mobile
Latest News Videos in Security
Video: Why security is everybody's responsibility
PlayRik Ferguson, senior security advisor at Trend Micro says it's up to all of us to make security work.
Whitepapers
Want more background on today's hottest IT trends?
Visit IT PRO's whitepaper library for more on virtualisation, encryption and other topics.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.