UAC (User Account Control). See User Account Control (UAC)
“UAC-friendly” user data storage, 30
UAP (User Account Protection), 14
UDP packets, Teredo and, 78–80
uiAccess manifest element, 23
UIPI (User Interface Privilege Isolation), 24
Understanding IPv6 (Davies), 78
Unicode, 6
Universal Plug and Play (UPnP), 86
Unix
access control, 160
root account, 99
services, 97
symlink security bugs, 45
“Unknown SID type” bug, Windows Vista, 34
unprivileged users, 14
untrusted data, 181
UPnP (Universal Plug and Play), 86
URIs, 130–131
URL filtering, disabling, 166–167
URLExemptionList, 167
U.S. Government Protection Profile for Single-Level Operating Systems in Environments Requiring Medium Robustness v1.67, 143
User Account Control (UAC), 13–14, 14–15, 40
administrator application runs, requiring, 22–24
administrator elevation, 18
“administrator with approval” mode, 18–20
COM components with COM elevation moniker, starting, 25–26
credentials or consent, application prompt for, 24–25
disabling, advising against, 45
elevated managed code applications, starting, 27
options, checking, 44
process elevation, determining, 20–22
token format, updated, 20
User Interface Privilege Isolation (UIPI), 24
user tokens, 15–17
User Account Protection (UAP), 14
user credentials, prompting for, 24–25, 169–171
user data, safe storage of, 30
user interface considerations, 27–28
User Interface Privilege Isolation (UIPI), 24
user mode, 136
user-name/password security, and Information Cards, 152
user tokens, 15–17
administrator elevation, 18
“administrator with approval mode,” 18–20
assertions and, 156
primary process, assigning, 104
restricted, and access checks, 101
token format, updated, 20
token levels, 21–22
warnings, 43