Defense in depth — the Microsoft way (part 22): no DEP in Windows' filesystem (and ASLR barely used)

November 28, 2014 007admin Leave a comment

Posted by Stefan Kanthak on Nov 29

Hi @ll,

more than 20 years ago Microsoft introduced the NTFS filesystem
(supporting ACLs) and “user profiles” to separate user data
(with emphasis on “data”) from the OS and each other.

More than 13 years ago Microsoft introduced “software restriction
policies” alias SAFER (<https://support.microsoft.com/kb/310791>,
<https://support.microsoft.com/kb/324036>,
<…

007 Software

Defense in depth — the Microsoft way (part 22): no DEP in Windows' filesystem (and ASLR barely used)

Leave a Reply Cancel reply

Software and Security Information