In the past few years, Microsoft operating systems have undergone major security

Question

In the past few years, Microsoft operating systems have undergone major security upgrades. One of the basic principles of OS security is to ensure that only authorized users have access to authorized resources. To limit the potential for unauthorized access, Microsoft implemented the Principal of Least Privilege. For this discussion, please research this concept and address the following questions in your post:

How is the Principal of Least Privilege implemented in Windows Operating Systems?

How does it improve security?

Present at least one example of how a system administrator would apply the Principal of Least Privilege in a real-world situation.

(Windows Security W2)

Explanation / Answer

Principal of least Privilege is a concept of increasing security of a system by restricting the user account and not giving administrator access to the system. This prevents the end user from doing certain activities like insert external drive, removing software-installing software etc. This prevents any malwares to enter the system or any malicious activity being done by the systems user. The restriction and allowance of certain tasks can be controlled individually by setting policies.

Windows Computers maintain security database in local security accounts manager (SAM), SAM is responsible of storing users and group information. Some default groups are:

Administrators: Have complete access of the system without any restriction

Power Users: Have less access like administrators but more than end users do. Basically they have some administrator rights to perform certain tasks.

Users: The people who are using the system for a long time

Guest: These are end users.

Users when logins in to the system SAM validates the user profile.

When a workgroup computer joins a domain, the local group memberships change with respect to who is logged into the system. In addition to the existing groups, the Domain Users group becomes a member of the local Users group and the Domain Admins group becomes a member of Administrators. This change allows any member of the Domain Admins group to log on to the computer with administrative rights, and any member of the Domain Users group to log on to the computer with limited user rights.

For example Bob, is not an Administrator, he is an end user. So when Bob logins in to the system his machine falls under the computer domain and as per his user profile he falls into the local groups and is determined whether he will join the administrator group or the Guest group. Accordingly, he gets access to the System.

I have solved your question. Please do not forget to give a positive like to the answer. Thank you.

Related Questions

Navigate

• Browse (All)
• Browse I
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.