Backup Operators user group, 21
backward compatibility, 9
bank, online, phishing example, 154–156
base functions, banned, 8
base process priority, changing, 107
BaseNamedObjects, 101
bcount, 5
BCrypt* functions, 136
BCryptAddContextFunctionProvider, 137–138
BCryptCreateHash, 141
BCryptDeriveKey, 144
bcrypt.dll, 140
BCryptGetFipsAlgorithmMode, 143
<bcrypt.h>, 140
BCryptOpenAlgorithmProvider, 141
Bell-Lapadula integrity model, 40
benign privileges, 106–107
Bennett, David, 167
Biba integrity model, 40
big-endian format, 6
binary patching, 8
BIOS options, and NX, 61–62
BitLocker Drive Encryption, 176–177
BITS (Background Intelligent Transfer Service), 75
blocking, 166.
See also parental controls
bool, 93–94
BOOL, 93–94
Boolean arguments, 27, 93–94
buffer overrun, 4, 8.
See also buffer overrun defenses
warnings, 10
buffer overrun defenses, 49–50
ASLR, 51–54
DEP, 59, 62, 126–129
/GS, 64–67
heap defenses, 55–59, 173
NX, 59–64
pointer encoding, 172
safeSEH, 67–72
stack randomization, 54–55
buffers, 3–4, 7
functions and, 5–7
input, TPM, 180
output, TPM, 180–181
source, 8
stack, 50
string, SAL annotation and, 3–8
bugs, 1
banned API removal and, 2
double-free, 57
privilege, 15
requestedPrivileges, Windows XP, 23
SAL annotation and, 2
static analysis, 9–11
“Unknown SID type,” Windows Vista, 34
“Bugs or Defects?” (Humphrey), 50
Button_SetElevationRequiredState macro, 27
“Bypassing Windows Hardware-Enforced Data Execution Prevention” (Skape and Skywing), 60
BYTE*, 6
bytes, counting, 8