Monthly Archives: February 2011

Architectural Insight into Microsoft UAC and Avecto Privilege Guard

A recent press release from a competitor made some ill-educated statements about Microsoft User Account Control (UAC) and other user mode solutions that control application privileges. The article picked up on a weakness in UAC that has been publicly known since the beta of Windows 7, and then went on to suggest that user mode solutions are not capable of managing application privileges securely and that elevated processes can only be protected at the kernel level.

This is a not only a naive statement, but one that is categorically incorrect. I will provide clear facts to dispel this fallacy, as I explore the internals of UAC and Avecto’s own privilege management solution, Privilege Guard.

Continue Reading