词条 | User Interface Privilege Isolation |
释义 |
UIPI, and Mandatory Integrity Control more generally, is a security feature, but not a security boundary. UI Accessibility Applications can be allowed bypass UIPI by setting their "uiAccess" value to TRUE as part of their manifest file. However, for this flag to be honored by Windows UIPI, the application must be installed in the Program Files or Windows directory, and the application must be signed by a valid code signing authority. To install an application to either of these locations requires at least a user with local administrator privilege running in an elevated process with high integrity level. Thus, malware trying to move into a position from where it can bypass UIPI must
References1. ^{{cite web|url=http://msdn2.microsoft.com/en-us/library/aa905330.aspx|title=The Windows Vista and Windows Server 2008 Developer Story: Windows Vista Application Development Requirements for User Account Control (UAC)|publisher=Microsoft|date=April 2007|accessdate=2007-12-07}} {{Windows Components}}2. ^{{cite web|url=http://www.coseinc.com/en/index.php?rt=download&act=publication&file=Vista_UIPI.ppt.pdf|title=Windows Vista UIPI |author=Edgar Barbosa|publisher=COSEINC|accessdate=2011-10-22}} 3. ^{{cite web |url=https://blogs.technet.microsoft.com/office2010/2009/08/13/protected-view-in-office-2010/ |title=Protected View in Office 2010 |last=Malhotra |first=Mike |date=August 13, 2009 |publisher=Microsoft |work=TechNet |accessdate=September 22, 2017}} 2 : Windows Vista|Microsoft Windows security technology |
随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。