*Double-take*
I'm sorry but did I miss something? SmartScreen filter has been kicking around forever. I know IE8 has it, can't remember if IE 7 did. Not once in several years has it ever flagged a file. Also on hat note, the Malicious Software Removal Tool has never flagged anything either. I work in IT, havce seen a variety of viruses on systems, and never once has any Microsoft filter or tool found any of them. And I fully agree with the statements that Windows would need a ground-up reinventtion towards security. Secure Boot using certificates is a very neat concept but doesn't the Flame example highlight how this isn't so powerful?
of course perhaps if everybody would stop using SHA1 in their certificates and move onto something the NSA has not discontunued perhaps keys and signatures would be stronger.
By the way, I'm no expert on BIOS and hardly know anything about UEFI design but I thought viruses could infiltrate BIOS code? What's to stop an in-OS exploit from updating the UEFI to hook in some rootkit that subverts Secure Boot after POST?
