Welcome to TechNet Blogs Sign in | Join | Help

Cyril Voisin (aka Voy) on security

Security is not important. Well... as long as your level of security is high enough!

Browse by Tags

All Tags » security   (RSS)
Network restrictions for service hardening
( This is part 5 of our series of posts on service hardening .) Last but not least a service can be (and should be) configured to have network restrictions with what is called the "Windows Service Hardening" rules in the Windows SDK (we'll call those Read More...
Posted: Monday, April 02, 2007 5:44 PM by Voy | 1 Comments
Filed under: , , , ,
Write-restricted token
( This is part 4 of our series of posts on service hardening. ) A service can be configured to be write-restricted, in addition to having a per-service SID. To do so, you specify a SID type of "Restricted" when configuring your service (see our previous Read More...
Posted: Sunday, April 01, 2007 6:10 PM by Voy | 1 Comments
Filed under: , , , ,
Per-service SID
(This is part 3 of our series of posts on service hardening.) Under Windows Vista/Longhorn Server, your service can now have its own SID (Security Identifier), which you can then use in ACLs to protect your service resources. You configure your service Read More...
Posted: Thursday, March 22, 2007 7:20 PM by Voy | 2 Comments
Filed under: , , , ,
Least privilege for services
This is part 2 of our series of posts on service hardening. "Need to have" and least privilege principle Executing with least privilege is a good practice of computer security. As with the "need to know" principle for information access, there should Read More...
Posted: Wednesday, March 21, 2007 3:17 PM by Voy | 2 Comments
Filed under: , , , ,
Services isolation in Session 0 of Windows Vista and Longhorn Server
You may have heard that built-in services in Windows Vista were specifically hardened by Microsoft engineers during its development process. You might be wondering what that really means, how it works and, if you are a developer, how to harden your own Read More...
Posted: Friday, February 23, 2007 10:13 AM by Voy | 2 Comments
Filed under: , , , ,
Microsoft TechDays 2007 in Paris
Yesterday, the first Microsoft Techdays ended in Paris after three days and more than 200 presentations. Thank you to all of you who honored us by their attendance! (I don’t have the final figures yet but you were about 9,000 people on the two first days Read More...
Posted: Thursday, February 08, 2007 5:16 PM by Voy | 0 Comments
Filed under: , , , , , ,
The human factor is a chance for IS security
People: the weakest link or a chance for security? Have you ever heard security experts? They all point out that the human factor is the weakest link in the security chain. They often make fun of people being victims of social engineering for instance. Read More...
Posted: Monday, November 20, 2006 4:36 PM by Voy | 1 Comments
Filed under: , , ,
Building a dual boot system with Windows Vista BitLocker protection with TPM support
Updated 2008-05-12 : added a step to turn the TPM on before enabling BitLocker. By the way, someone made me notice this post is now referenced by the official BitLocker FAQ on Microsoft's website. Many people have wondered if it would be possible to dual Read More...
Posted: Friday, October 13, 2006 10:59 PM by Voy | 10 Comments
Filed under: , , , ,
"Security is not important, when you have it.(*)" - a constructive blog on security
Hello everyone! As you can see, I decided to start blogging on security, maybe sometimes on interoperability. To be honest, if the blogosphere was the solar system, I could be found closer to Neptune than Mercury. However, I’ve been spending more than Read More...
Posted: Thursday, October 05, 2006 6:15 PM by Voy | 1 Comments
Filed under: , ,
Page view tracker