Hi, I am just curious since Microsoft announced that there will only be one operating system, Windows 10, across all devises, whether Windows viruses will now work on Windows phones when Windows 10 is released?
With each update to Windows 8 the Store apps are becoming increasingly open to install. Would not surprise me if a mode exists for non store metro apps to exist in Windows 10 enabling developers to target both store and standalone using common tools.
This would allow users to install anything they found on the internet, thereby taking MS out of the loop and removing their ability to test apps for malicious content before making them accessible to users. I think this would be diametrically opposed to the goals MS has set themselves for the Modern environment. Considering free apps can be distributed via the Windows Store at essentially no cost, and corporations can setup their own app store, there is very little to gain by introducing non-store apps, but a lot to lose.
I'd be very surprised if MS did anything like that.
?Security Tips | Android Developers
Android has security features built into the operating system that significantly reduce the frequency and impact of application security issues.
- The Android Application Sandbox, which isolates your app data and code execution from other apps.
- User-granted permissions to restrict access to system features and user data.
- Application-defined permissions to control application data on a per-app basis.
A typical Windows .NET application also executes within a runtime environment, just as a WP .NET app does, yet apps of the former type are neither sandboxed nor isolated from each other. Wouldn't that suggest that it's not the VM (called CLR for .NET applications) which provides the sandboxing?The Runtimes are what actually provide the isolation and sandboxing. It has nothing to do with the OS. Anyway, WP also makes use of UEFI Secure Boot, further preventing viruses from causing any harm.
Such an approach would circumvent the store, and therefore also skip the security screenings that apps must currently undergo. In that sense it would undermine security. It may also undermine the store in terms of sales, but I don't think anybody cares about that except MS, and possibly also those interested in piracy.Microsoft is all about opening up their tools and .net at the moment. Constraining developers to only use the store doesn't work in standalone or offline terminals etc. Sure its easy to say use older tools, but the current focus is definitely WinRT, and the store doesn't support every end use.
I really don't think standalone apps would under mine the store. Windows has been open forever and in some ways WinRT needs to be a little more open too.
Could you give me an example of what you're thinking of when you say "turn on or off". I can't think of anything which I think would fit that description. The desktop/Win32 environment on mobile devices isn't just turned off. It literally doesn't exist there.
Of course, there are different implementations of sandboxing. Some involve intercepting system calls, some involve modifications to the kernal itself. So, you could argue that the APIs are providing the sandboxing and, in some cases, be right. By definition, a sandbox is a confined execution environment, a container.A typical Windows .NET application also executes within a runtime environment, just as a WP .NET app does, yet apps of the former type are neither sandboxed nor isolated from each other. Wouldn't that suggest that it's not the VM (called CLR for .NET applications) which provides the sandboxing?
AFAIK the CLR is one of those components that W10 and W10M will share, but they will not share security models. That too suggests that most security issues will be handled outside the CLR, because otherwise the CLR could not be the same.
I'd argue that the sandboxing/isolation is rather a direct result of the APIs which are made available to the applications running in each environment. When running on Windows, .NET applications have access to everything accessible via Win32. When running on WP, .NET applications have access only to what is accessible via WinRT, which represents a much more limited set of features. It's that limited functionality of WinRT, which enforces sandboxing, as it doesn't provide unrestricted access to the file system, or anything else for that matter. I'd say that both Win32 and WinRT are the public API surfaces of the underlying OS, and that neither are directly related to the CLR, which is why I'd conclude that is in fact the OS that provides WinRT's, and hence also WP's, security features.
"Process virtual machines are designed to execute a single computer program by providing an abstracted and platform-independent program execution environment."
"A process virtual machine (also, language virtual machine) is designed to run a single program, which means that it supports a single process. "
This link provides good detailed information on sandboxing
Interesting, I was under the impression that Windows 10 would be one operating system that will run all devices, desktop and mobile. That seemed to be the message Microsoft was conveying. Didn't know that there would be Windows 10 and Windows 10 Mobile.
So in essence, does that mean that there is no major change from the current situation with Windows 10? Currently, we have Windows 8 and Windows Phone 8. With Windows 10 we will pretty much have the same situation, except that Microsoft will be calling its phone operating system also as Windows 10.
Backwards compatibility is the only reason windows gets viruses in the first place. Since phones use ARM processors instead of x86/x64 processors that backwards compatibility is removed right off the bat. Only the new apps have cross platform support. I don't think you could create a metro based virus and if this is true, then the phone will never get a virus.
This isn't completely accurate, because it's not about backwards compatibility. New programs are still made for x86.
A virus is really called a virus because it's able to spread from where it started and adversely affect other things on your computer.
In computers, we're really dealing with coding languages. All programs, including viruses, are just sets of instructions. It's something communicating with the computer and telling it to do things.
So you can think of a virus like a manipulative spy or con-man. Something that is really good at communicating and getting the computer to do things that will end up hurting itself.
What happens in traditional Windows is that the spy has access to the President. The spy (virus) can use his ability to manipulate language to convince the President to give him access to the country's most secure systems. The spy then uses that information to gain power for itself and lock out the President. The spy then replicates itself by having lots of spy babies and sends them off to do the same thing.
In the Modern side of Windows, the spy does not have access to the President. Instead, the spy is limited to his/her own house. Sure, they have a house in the country, but they don't have any power. They do have some avenues for communication under special government monitored phone lines (APIs). But that communication is limited. There are only certain things that the spy is allowed to ask for. And the spy is limited in what it's allowed to "do" to other things (like files and pictures). And this permission is only given after a review by national security (MS) of what it is asking and what it wants to do. And last, but not least, in the Modern Windows the spy can simply be eliminated if it is causing problems. It can't replicate itself and hide in the shadows. It's stuck in a house with a known address where a drone will come in and blow it away.
I hope so. I got a 1520 and still waiting for Denim. I wish MS be more clear about there updates!
Hi, I am just curious since Microsoft announced that there will only be one operating system, Windows 10, across all devises, whether Windows viruses will now work on Windows phones when Windows 10 is released?
Native desktop application support, to be accurate.It is NOT the same OS, they are built on same core but will still be different, WP10 will not have native applications support.
Native desktop application support, to be accurate.
Time to Develop 'Universal' Viruses
No way. The only software that will run on both mobile and desktop are the modern/RT apps and libraries. They are sandboxed and cannot contain viruses. Your phone won't run the classic Win32 programs and libraries(the ones with the viruses).