Home | FAQ | Contact
Private Seminars
Public Seminars
Course Descriptions
Course Map
Instructors
Resources

INT150
INT151
INT201
INT211
INT221
INT250
INT255
DRV101
DRV150
DRV201
DRV205
DRV211
DRV221
DRV222
DRV231
DRV232
DRV241
DRV251
DRV264
DRV274
DRV301
DRV321
OFF101
OFF201
SEC230
SEC250
WSC102
WSC110
WSC201

SEC250: Windows Vista Security Internals

This seminar provides a comprehensive guided tour through, and analysis of, the internal design, implementation, and operation of the major security components of the Windows Vista operating system.

Level

Intermediate

Audience

Applications developers; systems software developers; system administrators; system integrators; hardware OEMs; I.T. support personnel

Description

In this seminar you will learn how security is implemented in Windows Vista. Providing a safe and secure environment is one of the major goals of Vista, and this seminar covers how security works within Vista. 

We will first describe the most frequent avenues of attack, such as poorly written applications and drivers, malware, malicious web sites, network attacks, and stolen data, and Vista’s response to prevent those attacks from succeeding. We will show how the major security features in Vista address these threats. We will also show how to protect and control users from an administrative perspective.

We will then show how security is implemented, and the major operating system components that provide security services, such as the Object Manager, Security Reference Monitor, LSASS, Security Account Manager, Memory Manager, and Active Directory, and Kernel Patch Protection.

We provide detailed descriptions of the internal operation of some of the most important security mechanisms in Vista, such as: File and Object security, Windows Integrity Controls,  BitLocker, Encrypting File System, Address Space Layout Randomizer, Information Rights Management, Rights Management Service, Certificate Management, and Service security.

Coincident with the release of Windows Vista was the Windows Vista Security Guide.  We will look at the Guide, how it can be used to protect systems, and how that protection is implemented.

Topics

  • Security threats

  • Vista security features

    • File and object security

    • Windows integrity controls

    • Kernel patch protection

    • BitLocker

    • Encrypting File System

    • Address Space Layout Randomizer

    • Information Rights Management

    • Rights Management Services

    • Certificate Management

    • Service security

  • Vista security components

    • Object Manager

    • Security Reference Monitor

    • Local Security Authentication Subsystem

    • Security Account Manager

    • Memory Manager

    • Active Directory

  • Security internals

  • Vista Security Guide

  • Security design lifecycle

Prerequisites

All attendees must have attended one of our Windows Internals seminars, or have equivalent experience.  This seminar builds on, and does not repeat, material presented in our Windows Internals (INT201) seminar.

Windows versions

Windows Vista

Duration and formats

3 days with labs
2 days lecture only

Labs

We strongly recommend the hands-on labs version of this seminar:

As in all of our seminars, we have carefully designed a series of demonstrations, lab exercises, and problems that illustrate, help present, and build on the information presented. For this seminar, we follow nearly every point discussion of a security mechanism, principle, or concept with a lab exercise. We have you exercise or manipulate the part of the system described, and then examine displays that confirm the expected results. We also have you look for interactions with, and effects on, the rest of the system. This of course results in greatly increased comprehension and retention of the material.

In the lecture-only version, the lab exercises are replaced with brief demonstrations by the instructor.


 

New for Vista!
This
Copyright © 2007 - Azius Developer Training