Security (model) | Linux | Windows |
security model - Standard Unix Model | Y | N
Y (UAC) |
i.e. immunity from viruses (given common usage15) | Y | N |
security model - ACL | N
Y (SELinux21) |
Y |
security model - AFS ACL | Y | N
Y (add-on) |
security model - POSIX ACL | Y | Y |
security model - Security Modules (#401, #402) | Y - LSM | Y - CAS |
user definition - privileges, member groups | Y | Y |
security is implemented - any object manager object (files, processes...) | N | Y |
security is implemented - free from object-by-object assignment | N | Y |
Security (memory) | Linux | Windows |
NX | Y | Y |
ASLR | Y | Y |
PaX | N
Y (older kernels) |
N
Y (pre-Vista) |
Security (cryptography) | Linux | Windows |
cryptography support - generic | Y35 | Y36 |
cryptography - filesystem (see Encrypted Filesystem) | Y | Y |
cryptography - drive (see Encrypted Volume) | Y | Y |
Security (advanced) | Linux | Windows |
auditing support | N
Y (option) |
Y |
tampering protection | N
Y (SELinux37) |
Y38 |
digitally signed remote execution | N | Y49 |
Firewall | Linux | Windows |
kernel firewall - stateless | Y | N (external) |
kernel firewall - stateful | Y | N (external) |
Vulnerabilities (secunia.com) | Linux | Windows |
Current list | Linux kernel 2.6.x | Microsoft Windows Vista |
Most critical unpatched - remote (as of 15.5.2007) | None | None |
Most critical unpatched - all (as of 15.5.2007) | Not critical | Not critical |
<-Prev|Next->
Johnathon Weare © Johnny Weare 2009