Presentation is loading. Please wait.

Presentation is loading. Please wait.

Windows Resource Protection

Published byEustace Potter Modified over 6 years ago

Similar presentations

Presentation on theme: "Windows Resource Protection"— Presentation transcript:

1 Windows Resource Protection
By: 3rd course IT student Laurynas Geležius

2 About Windows Resource Protection (WRP) is a feature that started in Windows Vista and is still used by newest Windows operating systems. It replaces Windows File Protection (WFP) that was included in operating systems of Windows 2000 and Windows XP era.

3 What it does Windows Resource Protection protects registry keys and folders in addition to critical system files. The way it protects resources differs from the method used by Windows File Protection.

4 Windows File Protection
This sub-system aims to prevent programs from replacing critical Windows system files. Protecting core system files mitigates problems such as DLL hell (complications that arise when working with dynamic-link libraries (DLLs) ) 

5 How WFP works When WFP is active, replacing or deleting a system file that has no file lock to prevent it getting overwritten causes Windows immediately and silently to restore the original copy of the file from a cached folder that contains backup copies (for example: %WinDir%\System32\Dllcache). Only certain OS components like Package Installer (Update.exe) or Windows Installer (Msiexec.exe) can replace these files. OS versions with WFP (2000, XP) also shipped together with a System File Checker (SFC) – utility that allows users to scan for and restore corruptions in Windows system files themselves.

6 How WRP works WRP works in a similar way like WFP as in that if any changes are detected to a protected system file, the modified file is restored from a cached copy located at “dllcache” folder. The difference begins with access control lists (ACLs) that are defined for protected resources. An ACL specifies which users or system processes are granted access to objects, as well as what operations are allowed on given objects. Additionally permission for full access to modify WRP-protected resources is only given to processes using the Windows Modules Installer service (TrustedInstaller.exe). The “Trusted Installer” account is used to secure core operating system files and registry keys. Administrators no longer have full rights to system files, they have to take ownership of the resource and add the appropriate Access Control Entries (ACEs) to modify or replace it. System File Checker is integrated with WRP.

7 What WRP Protects 1. Large number of file types (picture above)
2. Several critical folders. If a folder is protected by WRP, it’s subfolders and files in them will also be protected. 3. Essential registry keys installed by Windows Vista and latter. If a key is protected by WRP, all it’s sub-keys and values will also be protected.

8 WRP issues Quite a few people have problems with WRP where: a) It “could not start the repair service” b) It “could not perform the requested operation” c) SFC Scannow not working Some of these issues were caused by TrustedInstaller service malfunction, but could be fixed. Some of the issues users could not find the reason and/or solution to.

9

10 Thank you, for your attention!

Download ppt "Windows Resource Protection"

Similar presentations

1 Chapter Overview Understanding and Applying NTFS Permissions Assigning NTFS Permissions and Special Permissions Solving Permissions Problems.

1 Chapter Overview Understanding and Applying NTFS Permissions Assigning NTFS Permissions and Special Permissions Solving Permissions Problems.
1 Chapter Overview Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions.

1 Chapter Overview Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions.
1 of 2 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 2 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
®® Microsoft Windows 7 for Power Users Tutorial 10 Backing Up and Restoring Files.

®® Microsoft Windows 7 for Power Users Tutorial 10 Backing Up and Restoring Files.
1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.

1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.
Maintaining Windows Server 2008 File Services

Maintaining Windows Server 2008 File Services
Access Control Lists and NTFS Permissions INFO333 – Lecture 4 2010 Mariusz Nowostawski Noria Foukia.

Access Control Lists and NTFS Permissions INFO333 – Lecture Mariusz Nowostawski Noria Foukia.
CN1176 Computer Support Kemtis Kunanuraksapong MSIS with Distinction MCT, MCTS, MCDST, MCP, A+

CN1176 Computer Support Kemtis Kunanuraksapong MSIS with Distinction MCT, MCTS, MCDST, MCP, A+
9/10/20151 Hyperion Enterprise 6.5 New Features & Functionality Robert Cybulski, CPA Finit Solutions.

9/10/20151 Hyperion Enterprise 6.5 New Features & Functionality Robert Cybulski, CPA Finit Solutions.
Lesson 14: Installing and Uninstalling Programs how to install a new program what to do if the new program doesn’t work how to uninstall a program © CCI.

Lesson 14: Installing and Uninstalling Programs how to install a new program what to do if the new program doesn’t work how to uninstall a program © CCI.
Chapter 7: WORKING WITH GROUPS

Chapter 7: WORKING WITH GROUPS
CHAPTER NT Installation Screens. Chapter Objectives Explain the installation in detail Focus on the three stages of installation Use screen images to.

CHAPTER NT Installation Screens. Chapter Objectives Explain the installation in detail Focus on the three stages of installation Use screen images to.
Chapter Fourteen Windows XP Professional Fault Tolerance.

Chapter Fourteen Windows XP Professional Fault Tolerance.
A+ Guide to Managing and Maintaining Your PC Fifth Edition Chapter 14 Managing and Troubleshooting Windows 2000.

A+ Guide to Managing and Maintaining Your PC Fifth Edition Chapter 14 Managing and Troubleshooting Windows 2000.
C HAPTER 6 NTFS PERMISSIONS & SECURITY SETTING. INTRODUCTION NTFS provides performance, security, reliability & advanced features that are not found in.

C HAPTER 6 NTFS PERMISSIONS & SECURITY SETTING. INTRODUCTION NTFS provides performance, security, reliability & advanced features that are not found in.
Maintaining File Services. Shadow Copies of Shared Folders Automatically retains copies of files on a server from specific points in time Prevents administrators.

Maintaining File Services. Shadow Copies of Shared Folders Automatically retains copies of files on a server from specific points in time Prevents administrators.
IOS110 Introduction to Operating Systems using Windows Session 8 1.

IOS110 Introduction to Operating Systems using Windows Session 8 1.
Computer Security and Penetration Testing Chapter 16 Windows Vulnerabilities.

Computer Security and Penetration Testing Chapter 16 Windows Vulnerabilities.
DIT314 ~ Client Operating System & Administration CHAPTER 5 MANAGING USER ACCOUNTS AND GROUPS Prepared By : Suraya Alias.

DIT314 ~ Client Operating System & Administration CHAPTER 5 MANAGING USER ACCOUNTS AND GROUPS Prepared By : Suraya Alias.
Module 3 Configuring File Access and Printers on Windows ® 7 Clients.

Module 3 Configuring File Access and Printers on Windows ® 7 Clients.

Similar presentations

Ads by Google