GottaBeMobile - Vista's UAC: Is The Cure As Bad As the Disease? : Tablet PC & Mobile PC News & Video Reviews, and Tablet PC Forums

Tuesday, October 24, 2006

« Vista RC2 on the TabletKiosk eo7210 | Main | 11 Free Apps For Your Pocket PC »

Vista's UAC: Is The Cure As Bad As the Disease?

UAC_b2_sm Much as been made of Vista’s User Account Control (UAC) as a new security feature. Given how vulnerable we all are to malware, Microsoft really didn’t have much of a choice but to make a major improvement in security features and follow the path that Apple and Linux take by keeping users away from the core of the OS. And by all accounts it looks to do the job, perhaps too well. That said, In my short time of testing Vista I’m thinking that a lot of folks are going to become very frustrated with the constant interruptions as designed in the UAC and simply do what I have done, which is turn it off.

By having the user make a choice before proceeding with even the most minor of administrative tasks I think Microsoft has created a very unfriendly atmosphere for the user. You could almost say that the acronym UI stands for Unwanted Interruptions. Yes, the pop-ups are annoying. As an example, should I really need to see a pop-up that tells me Vista has accepted IE7 as safe? If you are going to create a white list of software that is acceptable you don’t need to shoot off fireworks every time the OS allows an item on the White list.

Even more annoying is the fact that the screen grays and waits for you to press the continue key when performing a number of administrative tasks. On at least two instances, I have had software installs fail for what I am sure is the amount of time it took me to click on continue. When deleting certain files, (exe files in my experience) you get the same “protection.” And in some instances you will get a multiple query before proceeding which drives the annoyance factor up a notch or two.

So, here’s the point. If users are going to become annoyed to such a degree that they head to msconfig to turn off the UAC, (there are actually several ways to do this) then has security and protection really been increased? Or if a user is too cautious to turn off the UAC will they become so immune to the pop-ups that they’ll just keep clicking “Continue” or “Allow,” and miss some threat that they should have paid attention to? Or has a system been put in place that basically just avoids culpability?

There has to be a better way. I have no suggestions to solve this. Perhaps you do.

Editorials | Warner Crocker

10/24/2006 7:15 AM MST

Vista's UAC: Is The Cure As Bad As the Disease? Comments [4] | Digg This | del.icio.us | Citations

Tuesday, October 24, 2006 7:59:37 AM (Mountain Daylight Time, UTC-06:00)

Unfortunately, this is a feature not designed to protect power users. It's designed to protect your grandma. Honestly, how many times per week is she going to do something that bring up the box? None of the things that I have gotten one for is something my parents are capable of, or would want to do. They don't install new software. They don't change the background. They don't even know what the control panel is.

Power users know how to turn the feature off. They are meant to do that, because they can also keep the computer from jumping of the bridge to its death. It's like a test.

Aaron Axvig

Wednesday, October 25, 2006 12:47:11 AM (Mountain Daylight Time, UTC-06:00)

This IS a great feature for the computer novice...

But you and me can easily disable it. Check out this link :)

http://www.microsoft.com/downloads/genuineValidation.aspx?familyid=435bfce7-da2b-4a6a-afa4-f7f14e605a0d&displaylang=en

Mats

Wednesday, October 25, 2006 12:48:31 AM (Mountain Daylight Time, UTC-06:00)

Sorry. Wrong link: here :)

http://www.microsoft.com/technet/windowsvista/library/0d75f774-8514-4c9e-ac08-4c21f5c6c2d9.mspx

Mats

Thursday, October 26, 2006 4:58:09 AM (Mountain Daylight Time, UTC-06:00)

I'm pretty sure it's possible to make UAC able to be customized. Just think of any better firewall, e.g. Kerio.

After installation you're bugged every few seconds. You start to allow programs to start other programs and say "remember this combination", allow some progs to go out on port 80 and 8080 (and only them!) and say "remember this" etc. Each instance takes 10seconds to read & think and 1-2 seconds to click (it's very user friendly to set narrow permissions). After 2-3 weeks barely any alarm went off I disliked - seeing that that program is now about to be replaced, even though I did not start an installation, or that it wants to accept connection on port 5137, that's informing me of threats.

UAC may do the same: Offer "remember this exact decision" (that single file + action) and "remember the decision of all similar cases" (all files of same type and attributes or whatever applied) and "open details dialog". Give it two weeks and it'll bug you very seldomly. Then allow to export the configuration as XML so you can take it from PC to PC and (thanks to XML) can change paths or the like. I know MS has great usability and UI research labs, but they seem to be nearly never asked to evaluate a small final product :-( but only big ones (Office, Windows itself,...)

/Georg

Georg

Comments are closed.