Skip to main content

Security in Windows 7: Automatic Updates, Action Center and Virus Protection.

According to Microsoft, "Windows 7 improves security, reliability, and performance while helping to optimize PC management." Concepts like Kernel Patch Protection, Data Execution Prevention, Address Space Layout Randomization, and Mandatory Integrity Levels sound good, but the early propaganda about Vista hyped security too, and much of its promise failed to materialize. Will Windows 7 do better at living up to the hype?


True, the goals for Windows 7 sound a little less pie-in-the-sky than Vista's concept of Three Magical Pillars of Trusted Computing, or whatever it was supposed to be. I scoped out security elements in both the beta and the Release Candidate. Now that I've had a chance to look at the final code, too, it's clear to me that Security in Windows 7 is better than in Vista—just not hugely so.

Not-Quite Automatic Updates

Installing the beta and RC editions went quickly because I performed a clean install on a test system. Upgrading my production system to the final version of Windows 7 took more elbow grease. I did run the Windows 7 Upgrade Advisor and followed all its advice, upgrading some programs, replacing Windows Mail with Windows Live Mail, and so on. The upgrade took well over three hours. On the plus side, I didn't have to sit around for all that time answering questions—that style went out with Windows XP.

Back in beta days, I observed that the installer gave me a Vista-style choice whether to enable Automatic Updates; that hasn't changed in the final edition. Microsoft publishes important security patches every month and then lets any superstitious user suppress these patches based on fear and rumors? Bad idea.


Yes, the installer "recommends" enabling automatic updates. I'd like to see Windows 7 configured for fully automatic updates on installation. Let the user figure out how to turn it off! Switching this update model from opt-in to opt-out would, in one simple step, rid the world of millions of unpatched machines that succumb to every Web-based exploit and drive-by download. Maybe in Windows 8...

Action Center

Windows 7 didn't grumble about my Norton Internet Security 2010 installation, nor did Norton interfere with the upgrade. Without Norton in place, the new Action Center would have alerted me to the absence of antivirus protection. The old Vista Security Center just monitored firewall and anti-malware protection, plus automatic updates. The Action Center that replaces it also reports problems with spyware protection, Internet security, User Account Control, system maintenance, and more.

The Action Center's icon in the notification area replaces five separate icons found in Vista, and according to the Windows 7 developer blog, should only pop up a notification for matters that require an action from the user. You shouldn't see any more pop-ups that simply convey information; any pop-up will be important and actionable. I like that!

So, what's the first thing Action Center warned me about? "Windows will install updates as scheduled," that's what! It went on to say that installing updates might cause my computer to restart. That's a true statement, but is this any way to encourage users to keep their systems patched? Just warn me before any actual restarts, I say.

Virus Protection.

If you don't have antivirus or antispyware protection installed, the Action Center will nag and nag until you give in and install something it recognizes. Windows 7 recognizes just about every modern security product; if you manage to find one it doesn't know you can turn off that nagging message. When the beta test began, the link for security software information online went to an "under construction" page.


By the time Windows 7 RC rolled out, that page included links to seven major vendors with compatible beta products. At present the Windows 7 security software page lists over 20 vendors with compatible security products. The non-exhaustive list includes just about every major security vendor. For free protection try Microsoft Security Essentials 1.0, AVG Anti-Virus Free Edition 9.0, or avast! antivirus 4.8 Home Edition.

On my first day with the Windows 7 beta, I was barraged by User Account Control pop-ups because Microsoft was still working on taming the annoying UAC. The final Windows 7 is definitely an improvement as far as the number of pop-ups, and it also offers better choices for adjusting UAC.

If you liked this article, subscribe to the feed by clicking the image below to keep informed about new contents of the blog:

windows_xp



Labels:

Comments

Post a Comment

Do not insert clickable links or your comment will be deleted. Checkbox Send me notifications to be notified of new comments via email.

Popular posts from this blog

How to change the size of the touch and on-screen keyboard in Windows 10

Windows 10 PCs come with two keyboard apps, one is the OnScreen Keyboard , and the other is the Touch Keyboard . Basically, you don't need a touch screen to use the on-screen keyboard. It displays a virtual keyboard on the screen and you can use the mouse to select and press the keys. Although the on-screen keyboard app is very useful when we don't have a physical keyboard, its size is always a problem for users. You can move or enlarge the virtual keyboard from the icons in the upper right corner. If you want, you can also easily resize it. Changing the size of the on-screen keyboard is very easy. Type On-Screen Keyboard in your Windows search and run the desktop app, or you can also go via Settings > Ease of Access > Keyboard> Turn on the On-screen keyboard.   To change the size of the on-screen keyboard, move the cursor to the corner and drag it to the desired size. Resizing the touch keyboard is as simple as doing it! Just drag it and resize it us...
Post a Comment
Read more

Designing the Windows 8 touch keyboard.

When we began planning how touch and new types of PCs might work on Windows 8, we recognized the need to provide an effective method for text entry on tablets and other touch screen PCs. Since Windows XP SP1, which had Tablet PC features built in, Windows has included a touchable on-screen keyboard. But those features were designed as extensions to the desktop experience.  For Windows 8, we set out to improve on that model and introduce text input support that meets people’s needs, matches our design principles, and works well with the form factors we see today and expect to see in the future. I’m writing this blog post on our Windows 8 touch keyboard using the standard QWERTY layout in English. As I look at it, the keyboard seems very simple and sort of obvious. This comes partly from having worked on it for a while, but also because keyboards are familiar to us. But there is more here than meets the eye (or, fingertips). We started planning this feature area with no preco...
Post a Comment
Read more

How to install offline .NET Framework 3.5 on Windows 10 using DISM.

Windows 10 comes with .NET framework 4.5 pre-installed, but many apps developed in Vista and Windows 7 era require the .NET framework v3.5 installed along with 4.5. These apps will not run unless you will install the required version. When you try to run any such app, Windows 10 will prompt you to download and install .NET framework 3.5 from the Internet. However, this will take a lot of time. You can save your time and install .NET Framework 3.5 from the Windows 10 installation media. This method is much faster and does not even require an Internet connection. Here is how to install it. How to install offline .NET Framework 3.5 on Windows 10 using DISM. Contents: [ hide ] How to install offline .NET Framework 3.5 on Windows 10 using DISM. To install .NET Framework 3.5 in Windows 10, do the following: Insert your Windows 10 DVD, or double click its ISO image, or insert your bootable flash drive with Windows 10, depending on what you have. Open 'This PC' in File...
2 comments
Read more