Rerun?
Is this a rerun? I'd swear that Microsoft, or someone, released a very similar tool a couple of years ago. Or maybe it's just wishful thinking in hindsight.
Microsoft has released a free tool designed to harden software applications against attacks that exploit common security vulnerabilities. EMET, short for Enhanced Mitigation Evaluation Toolkit, allows developers and administrators to add specific security protections to applications. Unlike mitigations released in the past, …
The answer Is application sandboxing as used by platforms like Java. In other words, the administrator and not the developer should be responsible for defining the bounds of the application. As usual, Microsoft is years behind the curb. ActiveX relied on code signing for security, which was a flawed strategy from the start. I doesn't matter who wrote the code, it matters what the code does!
And yet there was a commeter on the WIndows 7 thread who was proudly boasting about the memory management functionality of Windows (since the mid 1990s!). That'll be the special functionality that lets hackers crash some code on purpose and then run their own code instead.
I think Microsoft should rewrite Windows from scratch. With zero compatibility to the current Windows. Existing applications could be run in a secure sand-box. This may help eliminate many of their existing bloat and code problems as well as allow them to introduce some real security at long last.