| Windows Vista is the next version of Windows for | | | | that encrypted files are accessible only as long as the |
| clients and servers. With the client version expected | | | | smart card is physically available. |
| in 2006 for businesses and 2007 for consumers and | | | | Drawbacks of Windows Vista: |
| the server version in 2007, Vista adds numerous | | | | * If you install Windows Vista and any other |
| features, including improved security and advanced | | | | operating system on a computer, you must install |
| multimedia capabilities. Vista also includes Trustworthy | | | | Windows Vista on a separate partition. Installing |
| Computing (Palladium) and greater support for digital | | | | Windows Vista on a separate partition ensures that it |
| rights management. PCs running Vista require more | | | | will not overwrite files used by the other operating |
| memory than Windows XP. At least 1GB is | | | | system. |
| recommended, with 2GB being a safer bet. | | | | * The drawback is that Windows Vista comes with |
| Security and safety features of Windows Vista | | | | two OpenType Khmer fonts, Daunpenh and |
| There are a number of security and safety settings | | | | Moolboran. Those fonts have small characters, which |
| of Windows Vista. Internally, Microsoft adopted a | | | | makes it hard to view Khmer text. This problem can |
| "Security Development Lifecycle" with the underlying | | | | be fixed by installing Khmer OS fonts. After Khmer |
| ethos of, "Secure by design, secure by default, | | | | OS fonts are installed, Khmer text will display nicely |
| secure in deployment". New code for Windows Vista | | | | on Firefox. |
| was developed with the SDL methodology, and all | | | | * Another problem would be the Keyboard layout. |
| existing code was reviewed and refactored to | | | | Khmer Keyboard layout on Windows Vista (layout |
| improve security. A number of specific improvements | | | | attached) is not the same as Keyboard Driver from |
| have been made: | | | | KhmerOS.info, which I think many people are used to. |
| * Windows Resource Protection prevents "potentially | | | | Find and Use Information |
| damaging system configuration changes", by | | | | The success of a business depends on the success |
| preventing change to system files and settings by | | | | of its people. Making your employees more |
| any process other than Windows Installer. Also | | | | productive and facilitating communication is the main |
| changes to registry by unauthorized software are | | | | reason you invest in Information Technology. Yet, |
| blocked. | | | | with most tools today, it is difficult for employees to |
| * Protected-Mode IE: Internet Explorer runs in a | | | | quickly find the information they need and leverage |
| separate, low-privilege process, protecting the user | | | | information technology to its full potential. Windows |
| from malicious content and security vulnerabilities, | | | | Vista is designed as a People-Ready solution so they |
| even in ActiveX controls. | | | | can easily find and use information. |
| * Windows Firewall has been upgraded to support | | | | * The fast, integrated desktop search in Windows |
| outbound packet filtering and full IPv6 support. A | | | | Vista helps make it easier for users to find the |
| new MMC-based interface has been introduced which | | | | information they need, even if it is on a shared drive |
| offers much more advanced control over the firewall. | | | | or other network resource. Windows Vista Desktop |
| * Session 0 Isolation: Previous versions of Windows | | | | Search is integrated throughout the operating system |
| ran System services in the same login session as the | | | | in the start menu, control panel, and their document |
| locally logged-in user (Session 0). In Windows Vista, | | | | folders making it easy to find the information they |
| Session 0 is now reserved for these services, and all | | | | are looking for. Users can also tag a file with |
| interactive logins are done in other sessions. This is | | | | "metadata" to indicate that it belongs to a certain |
| intended to help mitigate a class of exploits of the | | | | project or other category, making it easier to search, |
| Windows message-passing system, known as | | | | filter and organize their files. |
| Shatter attacks. | | | | * Once the user has entered the search information, |
| * BitLocker Drive Encryption. Formerly known as | | | | Windows Vista helps make it easier to identify the |
| "Secure Startup", this software utilizes a Trusted | | | | right data by displaying high-resolution thumbnails of |
| Platform Module to improve PC security. It ensures | | | | the content. Users can dynamically adjust the size of |
| that the PC running Windows Vista starts in a | | | | these thumbnails to make them large enough for |
| known-good state, and it also protects data from | | | | users to know whether they have found the right |
| unauthorized access through full volume encryption. | | | | document without opening it. The user can then |
| Data on the volume is encrypted with a Full Volume | | | | store the search results in a "search folder" to be |
| Encryption Key (FVEK), which is further encrypted | | | | recalled for later use. |
| with a Volume Master Key (VMK) and stored on the | | | | * Windows Vista helps make users more productive |
| disk itself. | | | | managing online information as well. With tabbed |
| * Windows Vista can use Smart Cards or Smart Card | | | | browsing in Internet Explorer 7, users can visually |
| Password combo for user authentication. | | | | scroll to the right page. Web page printing is also |
| * Windows Vista can use smart cards to store | | | | improved so you can capture all of the information, |
| Encrypting File System (EFS) keys. This makes sure | | | | without cutting off part of the page. |