Microsoft tried to increase security within its latest OS Vista but on the other side, they continue to leave open flaws due to design errors!
With Vista, Microsoft provides a new security mechanism called WIC (Windows Integrity Control). The purpose of WIC is to protect objects (files, directories, printers, devices) from bad users, virures or even dumb users.
I read this interesting article on SecurityFocus: Introduction to Windows Integrity Control.
To resume: it’s like GRSecurity or SELinux! 😉