PC user
Privilege Guard elevates the process tokens of individual apps to a higher privilege as they launch
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Tool solves Windows admin rights issues

Privilege Guard lets applications run properly under 'least user privilege' conditions

Daniel Robinson, vnunet.com 05 Sep 2008
ADVERTISEMENT

Avecto has unveiled a product that enables organisations to lock down their Windows PCs without running into the problems this can cause when applications need a higher privilege level in order to run.

The UK-based startup said that Privilege Guard allows policy settings to govern the privilege level of individual applications, enabling workers to log-in with minimal access rights for a greater level of security.

In the past, malware writers have exploited the fact that most Windows users operate with full administrator privileges by default.

Forcing users to run with minimal rights can prevent malicious code from causing harm, but this can also stop many common business applications from accessing the resources they need to run.

Privilege Guard works by elevating the process tokens of individual applications to a higher privilege as they launch, according to Avecto chief technology officer Mark Austin.

"It creates a token based on the user's token, but with administrator rights, " he explained.

While other methods exist for elevating application privileges, very few allow administrators to control this on an application-by-application basis or without ending up giving the user full admin rights as well.

In the current version, privilege levels are defined via a central management console and delivered to endpoint systems as an XML configuration file.

This can be distributed along with the Privilege Guard client using standard IT deployment tools, according to Austin.

Avecto plans to integrate future versions of Privilege Guard with Active Directory, so that application privilege levels can be set and updated via Group Policy settings on a Windows domain.

"We're trying to keep it simple at first," Austin said.

Privilege Guard supports Windows XP and Vista, and Windows Server 2003 and 2008 including Terminal Services. Licences cost £20 per seat.

The software is currently available directly from Avecto, but Austin said the firm is working on building a distribution channel.

See also:

InstallFree delivers apps to locked-down PCs
Application virtualisation promises to ease deployments  17 Jun 2008
Migration issues slow Vista adoption
Patching, user downtime and productivity issues provide barriers, according to research  04 Jun 2007
Microsoft buys admin tools firm Winternals
Future releases of Windows stand to gain some handy built-in admin tools as Microsoft snaps up Winternals  21 Jul 2006
Only a secure OS can defeat adware
People might like their anti-spyware systems to stop adware too, but the law poses a problem  19 Jul 2005

All IT Management
Tags: Security, Management, Security

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
Software Test Engineer
| JAM Recruitment
Software Test Engineer 6 Weeks Contract £ 35 per hour Wiltshire We have an urgent need for a Software Test Engineer. Main Duties: ·Sound understanding of full software lifecycle ·Solid experience in requirements analysis ·Requirements ... more >
Software Test Engineer
| JAM Recruitment
Software Test Engineer 3 Months Contract £35 per hour Wiltshire We have an urgent need for a Software Test Engineer. Main Duties: ·Sound understanding of full software lifecycle ·Solid experience in requirements analysis ·Requirements based ... more >
Business Analyst
| Aston Carter
Major Investment Bank requires a Business Analyst to work within reference data IT. The reference data IT function is responsible for the three internal systems. One of the systems is a strategic repository for Client ... more >
Occupational Health Opportunities
| JAM Recruitment
Job Ref: CY - 27021979 Package: £25 – 42,000 +Bens Location: YORKSHIRE Job type: Occupational Health Position type: Permanent Hours: Full time Contact name: Mr Colin Youle Contact Company: JAM HUMAN RESOURCES Are you a ... more >
More job opportunities
Accountancy Age
Active Home
Best Practice
Computeractive
Computing
Computing Business
CRN
Financial Director
Infomatics
Information World Review
IT Week
Management Consultancy
Network IT Week
Personal Computer World
PC Magazine
VNU Web seminars
vnunet.com
Webactive
What PC?
Useful links: About vnu network | Privacy policy | Terms & conditions
Access keys | Top of page | Feedback
VNU Business Publications
© 1995-2008 All rights reserved
VNU Business Publications Ltd., 32-34 Broadwick Street, London, W1A 2HG, is a company registered in England and Wales with company number 01513633
part of part of vnu.net europe