Windows Vista Security Internals

Date Added: Feb 2009
Format: PDF

Windows Vista introduces some significant changes in its security architecture; there are also some major changes between Vista RTM (release-to-manufacturing; a Microsoft term for "Gold" code or SP0) and Vista SP1. This paper first provides a brief overview of some of those architectural changes, and will then focus on the specific components that will be covered in greater detail in subsequent sections. The focus areas for this paper will be on logon and authentication, encryption and some networking enhancements in IPSec. Most of the discussion in this paper will focus on the Local Security Authority service - LSASRV.dl, the new Cryptography Next Generation (CNG) APIs - BCrypt.dll and NCrypt.dll, and some enhancements to IPSec contained in IKEEXT.dll.