(Driver Signing <> Kernel Patch Protection) AND (KPP <> Driver Signing)

So I am reading a lot of stories that seem to have confused, or incorrectly aligned, Windows Vista driver signing and Kernel Patch Protection technologies. Whilst driver signing and KPP are complimentary, they are not conjoined. Driver signing provides a method to better identify the author/creator of a piece of software or code so that…


FAQ: Why can’t I bypass the UAC prompt?

[This item was authored by Aaron Margosis and originally appeared on his Non-Admin Blog.] The frequently asked question, “Why can’t I bypass the UAC prompt?” is often accompanied by statements like one or more of the following: “We want our application to run elevated automatically without prompting the user.” “I don’t get why I can’t authorize an…

41

x64 Driver Signing Update

Hi,  it’s Scott Field, Windows Security Architect, again.  Microsoft recently became aware of a third party kernel mode driver named “Atsiv” which provides a deliberate means of loading code that conflicts with the Kernel Mode Code Signing (KMCS) policy included in Windows Vista x64 editions.   In Windows Vista x64 editions, the default KMCS policy is to…