Microsoft’s Windows 7 is the most secure desktop operating system it has ever produced. Of course, why shouldn’t it be. It seems reasonable to expect that each new version of the operating system will build on the security features that work, address issues from its predecessor, and include new security innovations. Basically, it would be a huge failure if it wasn’t the most secure Windows yet.
Even with advances in security like ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention, the addition of BitLocker-to-Go encryption for portable USB drives, and the more secure Web browsing experience provided by Internet Explorer 8 (combined with UAC which enables Internet Explorer Protected Mode), there is still some work to be done if Microsoft is looking for ideas for Windows 8.
Security experts from nCircle and Sophos contribute their thoughts about what Windows 7 got right and what still has room for improvement–namely the Windows Firewall, XP Mode virtualization, and hiding known file extensions by default.