New
#11
zzz2496,
Although written based on Windows Vista, I refer you to UAC: Desert Topping, or Floor Wax? an article by Crispin Cowan, Program Manager on Microsoft's Security Team. The conclusion:
Also see the more recent User Account Control: Inside Windows 7 User Account Control by Microsoft Technical Fellow Mark Russinovich where he provides a excellent information on UAC.UAC, in all of its forms, including Silent Mode, provides some obstacles to attacks, and so so it is always a security feature. UAC in operation does nothing other than to say “no” to some access requests, and so it cannot be anything but a security feature.
In particular note that although it is true that the primary purpose of elevation is not security, unlike Windows XP where it was necessary for a standard user to log on to an Admin account or use Fast User Switching, with UAC enabled, all user accounts—including administrative accounts—run with standard user rights.
This does indeed provide a significant layer of security!