Windows Vista includes a vast array of low-level security features. One of the most dramatic
is service hardening. Because of the modular architecture of Windows Vista, the
system has been created in such a way that the components that make up the system are
as isolated from and independent of each other as possible.
Furthermore, Microsoft has gone over each of these components to ensure that they are
running under the lowest possible security privileges. This protection extends to the
system services that run silently in the background.
There’s also a new feature called Address Space Layout Randomization (ASLR) that randomly
loads key system files in memory, making them harder to attack remotely. This is
a security technique that’s been employed by UNIX-based systems for some time.
While none of these features are particularly configurable, it’s fair to say that Windows
Vista is the most secure Windows version ever made, thanks to the sum of these and many
other security enhancements.