You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Management

Security Management White Papers

Analysis of GS Protections in Microsoft Windows Vista

Overview The Microsoft Visual Studio compiler supports a Buffer Security Check (GS) option to protect stack variables from overflows that result in arbitrary code execution. The paper developed techniques to identify the presence of GS protection in binaries and used them to identify which programs are and which programs are not protected by the GS option in the 32-bit RTM release of Windows Vista. This paper also measured the randomness of the GS cookies and the effect of Address Space Layout Randomization (ASLR) on the placement of the master cookie.

Further White Paper Details
Publisher	Symantec	File Format	PDF
Date Published	March 2007
Format	White Papers
Topics	Security Management, Windows Vista, Application Development

Did you find this white paper useful?

Balancing Security Against Productivity

Publisher:
Novell

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

NAC 2.0: A new model for a more secure future

Publisher:
Sophos

Ethical Hacking and Risk Assessments

Publisher:
Global Knowledge

IBM signs up for Microsoft Visual Studio

IBM has joined Microsoft's Visual Studio .Net development programme. DB2 developers already use Visual Studio - Microsoft's application for software developers - to create other Windows-based applications.

Channel:
Operating Systems

Microsoft to flash developers with Vista code

As it has done at past conferences, Microsoft is providing technical details as a way of seeding the market for third-party applications that run on Microsoft's development "stack", or combination of components, as well as its web properties.

Microsoft beefs up Vista's buffer

The feature, which is called Address Space Layout Randomization (ASLR), loads key system files in different memory locations each time the PC starts, making it harder for malicious code to run, according to Microsoft.

Microsoft to arm developers with Vista toolkits

The software, available as a plug-in to Microsoft's Visual Studio 2005, lets developers write applications that use Vista's new user interface, security features and communications system. The second launch is for a plug-in to Visual Studio 2005...

Vista security is child's play, says Allchin

Allchin said his confidence in Vista came from new security features, including parental controls and Address Space Layout Randomisation, which is a feature that randomises key data areas in the virtual computer space in an effort to foil hacks...

The Weekly Round-Up: 22.02.08

Ending on a high, the company added: "However, most programs will continue to work as expected after you install Windows Vista SP1. A statement from Microsoft said, apparently without irony: "Windows Vista Service Pack 1 (SP1) contains many...

Channel:
Weekly Round-up

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Security Management White Papers

Analysis of GS Protections in Microsoft Windows Vista

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific