Find White Papers
Home About Contact Help
Free Membership Member Login
Aug 30, 2008
View Popular Research Browse Topics Find Business Solutions RSS Feeds List Your Research
Search the Library                  Advanced Search

Windows Vista Misunderstood Security Breach

NetWrix
By : NetWrix
INFORMATION
Published : Apr 14, 2008
Length : 4
Type : White Paper
 
Download Now
Save for Later
  Email This Page
Overview :

Windows’ newest technology, the User Account Control, found in the Vista operating system has been erroneously called an additional level of security by many computer security professionals. Instead, in the hope to reduce the incidence of malware, unauthorized software installation, and unintentional system changes the User Account Control separates standard user tasks from requiring administrator level password access.

Unfortunately, at the enterprise level with hundreds of devices, applications, and shared password accounts, it places all the burden on busy IT administrators. Creating needless costs and time spent away from mission critical tasks for the IT department.

View All Items By This Company
Browse Related Categories :

Access Control

,

Security

,

Windows
 
The problem
Windows’ newest technology, the User Account Control, found in the Vista operating system has been erroneously called an additional level of security by many computer security professionals.
In a self-published consumer report “Security Best Practices for Consumers” Microsoft states, “… important to remember that User Account Control prompts are not a security boundary – they don’t offer direct protection.”
Instead, in the hope to reduce the incidence of malware, unauthorized software installation, and unintentional system changes the User Account Control separates standard user tasks from requiring administrator level password access. Unfortunately, at the enterprise level with hundreds of devices, applications, and shared password accounts, it places all the burden on busy IT administrators. Creating needless costs and time spent away from mission critical tasks for the IT department.
Additionally, User Account Control does not provide a method to audit or track users. In a strict regulatory environment, such as Sarbanes-Oxley and HIPAA, enterprises require a utility that allow them to stay in compliance, audit users, and provide security to data such as passwords.

The solution
Third party vendors such as NetWrix Corporation have come to fill this void. NetWrix’s “Privileged Account Manager” grants standard users limited access to their office computers. And when needed, allows standard users to elevate their permissions without the hand-holding of an IT administrator. They simply check out an administrator-level password through a secure web portal.
It can easily be scaled up in an enterprise environment to include shared accounts among hundreds of administrators, tens or thousands of users on both Windows and Mac environments, and across dozens of geographic locations.
The user is audited and tracked at all times. And passwords are logged based on time and name of the user. When the task is complete the system securely changes the password so it can be checked out by another user or by the same user at another time.
All privileged access attempts to an enterprise’s computer system will be audited and secured automatically. Freed from redundant and time consuming tasks, IT costs are contained and administrators are able to work on more vital tasks.
Search the Library                  Advanced Search
Today's Popular Reports This Weeks Most Popular Reports Most Popular Topics Vendor Directory Home
About Us Contact Us List Your Papers Partner With Us Site Map