Presentation is loading. Please wait.

Presentation is loading. Please wait.

2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada.

Published byLeo Johnston Modified over 8 years ago

Similar presentations

Presentation on theme: "2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada."— Presentation transcript:

1 2851A_C01

2 Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada

3 Session Prerequisites  Experience managing Windows XP Professional desktops  An understanding of the deployment tools that are used to deploy Windows XP and updates to the desktop  Experience using Group Policy to manage desktops Level 200

4 Session Prerequisites (cont.) OR The skills represented by taking: Course 2285 (covering Windows XP) Course 2297 (designing Active Directory ® and networking)

5 Introduction to Windows XP Service Pack 2  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 E-Mail Handling Security Features  Browsing Securely by Using SP2

6 The Need for SP2 Security attack trends include: Increased uses of automation - tools for Scanning, Compromising and Propagation. Asymmetric threats - distributed systems to attack single targets Increased complexity - Tool signatures more complex and difficult to detect. Infrastructure attacks - denial of service and worms Faster detection of vulnerabilities and faster exploits. Firewall intrusions - harnessing ‘firewall friendly’ and ‘mobile’ code

7 What Is New in SP2? New and Improved Features: Enhanced Network Protection New Memory Protection More Secure E-Mail Handling Enhanced Browser Security Improved Computer Maintenance Enhanced Network Protection New Memory Protection More Secure E-Mail Handling Enhanced Browser Security Improved Computer Maintenance SP2 provides several built-in security technologies that reduce computer vulnerabilities.

8 How SP2 Minimizes the Attack Surface SP2 Features Security Technologies Network Protection Windows Firewall Remote procedure call (RPC) Distributed-component object model (DCOM) Memory Protection NX (Intel and AMD 64 bit processors currently) Sandboxing (buffer overruns) & Cookies (stack overruns) More Secure E-Mail Handling Multipurpose Internet mail extension (MIME) type restrictions Attachment handling Enhanced Browser Security Pop-up management and crash detection Download prompt Improved Computer Maintenance Security Center Automatic updates & Anti Virus Monitoring

9 Your instructor will demonstrate how to resolve a remote connectivity issue with the netsh command-line tool. Demonstration 1: Resolving Remote Connectivity Issues by Using the Netsh Command-Line Tool You will see how to: Allow access to MMC with the firewall enabled Unblock a specific port via command line / script

10 SP2 Security Management Using Windows Security Center Windows Firewall Configuration Internet Options Configurations Antivirus Configuration Automatic Update Configuration Computer Running Security Center

11 Your instructor will demonstrate how to manage SP2 by using Security Center. Demonstration 2: Managing SP2 by Using Windows Security Center Specifically, you will learn to configure:  The Automatic Updates option  The Virus Protection option

12 Windows XP SP2 Network Protection Features  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 E-Mail Handling Security Features  Browsing Securely by Using SP2

13 New Security Features in Windows Firewall Boot-time security On by default Global configuration and restore defaults On with no exceptions Command-line support Unattended setup support RPC Support for system services Multiple profiles Windows firewall exceptions list Local subnet restrictions

14 Windows Firewall Advanced Security Features Advanced options include: Basic configuration ICMP options Ability to enable specific network interfaces Connection and packet logging improvements

15 Demonstration 3: Exploring Windows Firewall New Security Features You instructor will demonstrate:  The On by Default feature  The On with No Exceptions feature  The Windows Firewall Exceptions List  The Restore Defaults feature (advanced options)

16 Enhanced DCOM Security Remote Client DCOM Server Specific COM Permissions Able to restrict rights that are available to users to individual COM servers Computer-wide Restrictions Restrictions that apply to DCOM call, activation and launch privileges and that differentiate between local and remote clients

17 More Secure Remote Procedure Calls Remote, Anonymous Client Firewall RPC Servers Processes running on Local System, Network Service, Local Service security context Open port Allowed Processes claiming to be RPC Services e.g. Trojan Horses Other acceptedrestricted Open port Blocked Local Client and/or Authenticated client Group Policy

18 Services Disabled by Default in Windows XP SP2 Disabled Service Before SP2 After SP2 Alerter Set to Start Manually Disabled by Default Windows Messenger Set to Start Automatically Disabled by Default Alternative options:  Recommended resolution; rewrite application to use another method to communicate with the user  Start the Alerter or Messenger service programmatically

19 Reducing Application Failures  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Application Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 E-Mail Handling Security Features  Browsing Securely by Using SP2

20 Execution Protection (NX) and How It Works NX features: Memory locations tagged as nonexecutable unless location explicitly contains executable code Buffer overrun attach protection Currently available on some 64-bit CPUs CPU-aided memory protection

21 Exploring SP2 E-Mail Handling Security Features  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 E-Mail Handling Security Features  Browsing Securely by Using SP2

22 Attachment Manager in Outlook Express and Windows Messenger New e-mail with attachment User Running Outlook Express User Running Windows Messenger Different actions taken for: Safe attachments Unsafe attachments Suspicious attachments AES API

23 HTML Content Blocking in Outlook Express Content Blocking Feature: Blocks external images New “Don’t Download External HTML Content” feature Users Running Outlook Express Web Server Internet Preserves the user's privacy and prevents future attacks Web Server

24 Demonstration 4: Demonstrating and configuring Attachment Handling in Outlook Express You instructor will demonstrate:  How Outlook Express Handles attachements  How to configure attachment handling in Outlook Express

25 Browsing Securely by Using SP2  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 E-Mail Handling Security Features  Browsing Securely by Using SP2

26 Managing Internet Explorer Browser Security Security feature Illustrate with MIME security improvements  Consistency checks  Stricter rules Better security management  Add-on control and management features  Better prompts  New script-initiated window restrictions Local machine zone  A list of steps that make up the procedure  An interface or a GUI diagram with callout labels Feature control security zone  MIME sniffing  Security elevation  Windows restriction Group Policy settings  Administrative control for Feature Control Security Zones

27 Making the Local Computer More Secure  Internet Explorer information bar  Internet Explorer add-on installation prompt  Internet Explorer download prompt  New file handler icon  New security information area  Executable files are checked for publisher information  Outlook Express prompts

28 Blocking Annoying Pop- Up Windows FeatureDescription Pop-Up Manager Blocks unwanted pop-ups Window Restrictions Controls script-initiated repositioning Controls script-initiated resizing Window Placement Governs the placement of pop-up windows

29 Managing Add-Ons Add­On Management and Crash Detection: Better add-on detection New add-on management features

30 Demonstration 5: Popups, Scripts and Configuring Add-On Management You instructor will demonstrate:  The Information Bar with popups and scripts  How to view information about how often the add- ons have been used by Internet Explorer

31 Session Summary  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Application Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 E-Mail Handling Security Features  Browsing Securely by Using SP2

32 Next Steps  Microsoft Canada Technet http://www.microsoft.com/technet/canada/ http://www.microsoft.com/technet/canada/ http://www.microsoft.com/technet/canada/  Find additional Technet events: http://www.microsoft.com/technet/canada/ events/ http://www.microsoft.com/technet/canada/ events/  Share information and get community- based support for SP2 http://communities.microsoft.com/newsgroup s/default.asp?icp=xpsp2&slcid=us http://communities.microsoft.com/newsgroup s/default.asp?icp=xpsp2&slcid=us  Get additional information about changes to functionality in SP2 http://www.microsoft.com/technet/prodtechn ol/winxppro/maintain/winxpsp2.mspx

33 Questions and Answers

Download ppt "2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada."

Similar presentations

Desktop Value - Introducing Windows XP Service Pack 2 with Advanced Security Technologies Presenter: James K. Murray Title: Information Technologies Consultant.

Desktop Value - Introducing Windows XP Service Pack 2 with Advanced Security Technologies Presenter: James K. Murray Title: Information Technologies Consultant.
IMS Client Installation Procedures 1. Copy the Voicemail Pro from the shared folder on the Voicemail Pro server. Go to Start, Run, and \\ or \\

IMS Client Installation Procedures 1. Copy the Voic Pro from the shared folder on the Voic Pro server. Go to Start, Run, and \\ or \\
Microsoft Windows XP SP2 Urs P. Küderli Strategic Security Advisor Microsoft Schweiz GmbH.

Microsoft Windows XP SP2 Urs P. Küderli Strategic Security Advisor Microsoft Schweiz GmbH.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
Windows Server 2003 SP1. Windows Server™ 2003 Service Pack 1 Technical Overview Jill Steinberg: Added TM Jill Steinberg: Added TM.

Windows Server 2003 SP1. Windows Server™ 2003 Service Pack 1 Technical Overview Jill Steinberg: Added TM Jill Steinberg: Added TM.
AVG Internet Security 7.5 Product presentation.

AVG Internet Security 7.5 Product presentation.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Windows XP Service Pack 2 Technical Update. Windows XP Service Pack 2 Technical Workshop Agenda –Security Overview –Introduce Windows XP Service Pack.

Windows XP Service Pack 2 Technical Update. Windows XP Service Pack 2 Technical Workshop Agenda –Security Overview –Introduce Windows XP Service Pack.
Windows XP Service Pack 2 Alex Balcanquall Senior Consultant Microsoft Services Organisation.

Windows XP Service Pack 2 Alex Balcanquall Senior Consultant Microsoft Services Organisation.
Changes in Windows XP Service Pack 2

Changes in Windows XP Service Pack 2
Information for Developers Windows XP Service Pack 2 Information for Developers.

Information for Developers Windows XP Service Pack 2 Information for Developers.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.

Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
VMware vCenter Server Module 4.

VMware vCenter Server Module 4.
Windows XP Service Pack 2 and the Microsoft Virtual Machine: Developer Implications Rudi Larno Developer & Platform Group Microsoft BeLux.

Windows XP Service Pack 2 and the Microsoft Virtual Machine: Developer Implications Rudi Larno Developer & Platform Group Microsoft BeLux.
Module 16: Software Maintenance Using Windows Server Update Services.

Module 16: Software Maintenance Using Windows Server Update Services.
Defense-in-Depth Against Malicious Software Rick Claus / Bruce Cowper IT Pro Advisors Microsoft Canada.

Defense-in-Depth Against Malicious Software Rick Claus / Bruce Cowper IT Pro Advisors Microsoft Canada.

Similar presentations

Ads by Google