DOCSLIB.ORG

Analysis of Windows 10 Hibernation File

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Analysis of Windows 10 Hibernation File TALLINN UNIVERSITY OF TECHNOLOGY School of Information Technologies Shaymaa Mamdouh Mohammed Radwan Khalil 177237IVCM ANALYSIS OF WINDOWS 10 HIBERNATION FILE Master’s thesis Supervisor: Hayretdin Bahsi Ph.D., Research Professor Pavel Tšikul Ph.D. Researcher Tallinn 2020 TALLINNA TEHNIKAÜLIKOOL Infotehnoloogia teaduskond Shaymaa Mamdouh Mohammed Radwan Khalil 177237IVCM WINDOWS PUHKEOLEKUFAILIDE ANALÜÜS magistritöö Juhendaja: Hayretdin Bahsi Ph.D., Research Professor Pavel Tšikul Ph.D. Researcher Tallinn 2020 Author’s declaration of originality I hereby certify that I am the sole author of this thesis. All the used materials, references to the literature and the work of others have been referred to. This thesis has not been presented for examination anywhere else. Author: Shaymaa Mamdouh Mohammed Radwan Khalil 19.05.2020 3 Abstract Since the reveal of Windows hibernation file structure by Mattieu Suiche late in 2007, the hibernation file became a valuable source of artifacts for digital forensics examiners. Starting from Windows 8, Microsoft changed the hibernation file structure. Therefore, many digital forensics tools are no longer supporting the direct analysis of modern hibernation files. The literature shows that the modern hibernation file almost loses its value once the system is resumed, as all the file’s content is zeroed, except the header. Such behavior modification of hibernation file content toward power state changes has caused some digital forensics practitioners to lose interest in including the file in their investigations. One of the aims of presenting this study is to raise awareness about the forensic value of Windows 10 hibernation file and highlight special considerations to be taken when processing the file. The study analyses the hibernation file structure of Windows 10 versions 1809, 1903, 1909, and provides an updated layout of the file. Moreover, this research documents the impact of different Windows 10 configurations on the hibernation file content. A predefined list of evidence was created to compare the output of hibernation file analysis using BEC, Magnet Axiom, and BlackLight tools. The thesis also evaluates alternative tools that could be used in the analysis of Windows 10 hibernation file. The study demonstrates that Windows 10 hibernation file is a valuable source of volatile evidence. The results of this research show that Windows 10 hibernation file contains valuable data related to running processes, opened connections, private browsing history, and other types of evidence that might not be found in a disk image. This research recommends considering the hibernation file as a memory image substitute, in case the memory image was not taken from live evidence, memory image corruption, or the device was found in hibernation or shutdown state. This thesis is written in the English language and is 121 pages long, including 7 chapters, 63 figures, and 30 tables. 4 List of abbreviations and terms ACPI Advanced Configuration and Power Interface BCD Boot Configuration Database BEC Belkasoft Evidence Center BIOS Basic Input Output System CR Control Register DFRWS Digital Forensics Research Workshop DHCP Dynamic Host Configuration Protocol EXIF Exchangeable Image File Format FAQ Frequently Asked Questions GDT Global Descriptor Table HORM Hibernate Once/Resume Many IDT Interrupt Descriptor Table MBR Master Boot Record N/A Not Available OS Operating System PC Personal Computer POST Power-on self-test RAM Random Access Memory SKM Secure Kernel Mode UEFI Unified Extensible Firmware Interface VAD Virtual Address Descriptors 5 Table of contents Author’s declaration of originality ................................................................................... 3 Abstract ............................................................................................................................. 4 List of abbreviations and terms ........................................................................................ 5 Table of contents .............................................................................................................. 6 List of figures ................................................................................................................. 10 List of tables ................................................................................................................... 12 1 Introduction ................................................................................................................. 14 1.1 Research Objectives ............................................................................................. 16 1.2 Scope .................................................................................................................... 17 1.3 Novelty ................................................................................................................. 18 2 Background .................................................................................................................. 19 2.1 Memory forensics ................................................................................................. 19 2.2 Power Management basics ................................................................................... 20 2.3 Hibernation file ..................................................................................................... 22 2.3.1 Entering hibernation state .............................................................................. 24 2.3.2 Resuming system from hibernation ............................................................... 24 2.3.3 File size and types ......................................................................................... 25 2.3.4 Usage ............................................................................................................. 26 2.3.5 File structure .................................................................................................. 27 2.3.6 Hibernation file security ................................................................................ 35 2.4 Related work ......................................................................................................... 36 2.5 Introduction to analysis Tools .............................................................................. 39 2.5.1 WinDbg ......................................................................................................... 39 2.5.2 FTK Imager ................................................................................................... 40 2.5.3 Hibr2Bin ........................................................................................................ 40 2.5.4 Hibernation Recon ......................................................................................... 42 2.5.5 Volatility ........................................................................................................ 43 2.5.6 Rekall ............................................................................................................. 44 2.5.7 Bulk_extractor ............................................................................................... 46 6 2.5.8 Passware Kit Forensic ................................................................................... 47 2.5.9 Belkasoft Evidence center ............................................................................. 48 2.5.10 BlackLight ................................................................................................... 50 2.5.11 Magnet Axiom ............................................................................................. 51 2.5.12 Hive Recon .................................................................................................. 53 3 Research Methods ....................................................................................................... 55 3.1 Variables ............................................................................................................... 55 3.1.1 Windows Version .......................................................................................... 55 3.1.2 Hibernation file type ...................................................................................... 57 3.1.3 System power state ........................................................................................ 57 3.2 Analysis Types ..................................................................................................... 58 3.2.1 Manual analysis ............................................................................................. 58 3.2.2 Analysis of hibernation file using tools ......................................................... 60 3.3 Test Cases ............................................................................................................. 61 3.3.1 Test Case A .................................................................................................... 61 3.3.2 Test case B ..................................................................................................... 62 3.3.3 Test case C ..................................................................................................... 62 3.3.4 Test case D .................................................................................................... 63 4 Manual analysis of Windows 10 hibernation file ........................................................ 66 4.1 Default Windows 10 settings ...............................................................................
Load more

Recommended publications
  • Shorten Device Boot Time for Automotive IVI and Navigation Systems
    Shorten Device Boot Time for Automotive IVI and Navigation Systems Jim Huang ( 黃敬群 ) <[email protected]> Dr. Shi-wu Lo <[email protected]> May 28, 2013 / Automotive Linux Summit (Spring) Rights to copy © Copyright 2013 0xlab http://0xlab.org/ [email protected] Attribution – ShareAlike 3.0 Corrections, suggestions, contributions and translations You are free are welcome! to copy, distribute, display, and perform the work to make derivative works Latest update: May 28, 2013 to make commercial use of the work Under the following conditions Attribution. You must give the original author credit. Share Alike. If you alter, transform, or build upon this work, you may distribute the resulting work only under a license identical to this one. For any reuse or distribution, you must make clear to others the license terms of this work. Any of these conditions can be waived if you get permission from the copyright holder. Your fair use and other rights are in no way affected by the above. License text: http://creativecommons.org/licenses/by-sa/3.0/legalcode Goal of This Presentation • Propose a practical approach of the mixture of ARM hibernation (suspend to disk) and Linux user-space checkpointing – to shorten device boot time • An intrusive technique for Android/Linux – minimal init script and root file system changes are required • Boot time is one of the key factors for Automotive IVI – mentioned by “Linux Powered Clusters” and “Silver Bullet of Virtualization (Pitfalls, Challenges and Concerns) Continued” at ALS 2013 – highlighted by “Boot Time Optimizations” at ALS 2012 About this presentation • joint development efforts of the following entities – 0xlab team - http://0xlab.org/ – OSLab, National Chung Cheng University of Taiwan, led by Dr.
    [Show full text]
  • Windows® 10 Iot Enterprise Nel Dettaglio
    Windows 10 IoT Enterprise | Il nuovo S.O. Microsoft per applicazioni industriali Windows 10 IoT Enterprise Il nuovo S.O. Microsoft per applicazioni industriali Windows 10 IoT Enterprise Il nuovo S.O. Microsoft per applicazioni industriali Indice PAG 2 White_Paper | Windows 10 IoT © 2019 FEC Italia Windows 10 IoT Enterprise | Il nuovo S.O. Microsoft per applicazioni industriali Introduzione Windows 10 è una piattaforma composta da diversi sistemi operativi suddivisi in due categorie: Windows 10 per applicazioni consumer e office automation e Windows 10 IoT per applicazioni industriali. Windows 10 Windows 10 IoT — Enterprise — Enterprise — Education — Mobile Enterprise — Pro — Core — Home Un unico sistema operativo, molti vantaggi Windows 10 IoT Enterprise è stato progettato per applicazioni industriali moderne e sicure e fornisce tutte le usuali funzionalità di Windows 10 con in aggiunta le funzionalità avanzate di sicurezza incluse nelle versioni precedentemente denominate Embedded (Safety&Locking). Sistemi operativi precedenti Windows 10 IoT Enterprise Standard fully featured PRO Language packs (MUI) Standard&Industrial fully featured Industrial Safety&Locking Safety&Locking Language packs (MUI) Language packs (MUI) Embedded PAG 3 White_Paper | Windows 10 IoT © 2019 FEC Italia Windows 10 IoT Enterprise | Il nuovo S.O. Microsoft per applicazioni industriali Sicurezza e Funzionalità Lockdown Ecco solo alcune delle features che Windows IoT Enterprise offre in termini di sicurezza: » Le ultime tecnologie e funzionalità rivolte alla sicurezza e protezione dei dati azien- dali e delle credenziali di accesso ai dispositivi, con alta resistenza a malware di ultima generazione » Accesso solo a dispositivi autorizzati » Esecuzione solo di applicazioni autorizzate » Lockdown features (UWF, USB filters, AppLocker..) — UWF Unified Write Filter di tasti, quale ad esempio lo swipe da destra Questo filtroprotegge il disco da cambia- che attiva l’Action Center onde evitare accessi menti indesiderati.
    [Show full text]
  • WIN-911 7.17 & WEB-911 Xtools 7.13 System Requirements
    WIN-911 7.17 & WEB-911 XTools 7.13 System Requirements WIN-911 • Personal computer with 2.1 GHz Pentium 4 processor or higher • Microsoft Windows XP Service Pack 3, Microsoft Windows Server 2003 Service Pack 1 or later, Microsoft Windows 2003 R2, Microsoft Windows 7 Service Pack 1, Microsoft Windows Server 2008 Service Pack 2, Microsoft Server 2008 R2 Service Pack 1, Microsoft Windows 8 & 8.1, Microsoft Server 2012, Microsoft Server 2012 R2, Windows 10. (Only US Versions of Windows) *** TAPI Voice Calls are NOT SUPPORTED in Windows 10 Version 1903 *** • 2GB of RAM. Additional RAM is recommended if additional programs are to be run simultaneously. • 2 GB of hard disk space • Optional Notification Hardware: Dial-out Paging Data fax modem and a dedicated analog phone line Voice Dial-outs/ins Dialogic telephonic card or a TAPI voice modem and a dedicated analog phone line. *** TAPI is NOT SUPPORTED in Windows 10 Version 1903 *** SMS Text Messaging GSM, CDMA or HSPA modem with an activated cellular account. Email Broadband always-on internet connection. Local Announcer Sound card and audio output source. Printing Dot Matrix printer or a printer capable of printing a "line-at-a-time" is recommended. WEB-911 Service • Must be installed on the same machine as WIN-911 • Microsoft .NET 4.0 and Internet Information Services (IIS) are also required • Microsoft Windows XP Service Pack 3, Microsoft Windows Server 2003 Service Pack 1 or later, Microsoft Windows 2003 R2, Microsoft Windows 7 Service Pack 1, Microsoft Windows Server 2008 Service Pack 2, Microsoft Server 2008 R2 Service Pack 1, Microsoft Windows 8 & 8.1, Microsoft Server 2012, Microsoft Server 2012 R2, Windows 10.
    [Show full text]
  • Administrative Guide for Windows 10 and Windows Server Fall Creators Update (1709)
    Operational and Administrative Guidance Microsoft Windows 10 and Windows Server Common Criteria Evaluation for Microsoft Windows 10 and Windows Server Version 1903 (May 2019 Update) General Purpose Operating System Protection Profile © 2019 Microsoft. All rights reserved. Microsoft Windows 10 GP OS Administrative Guidance Copyright and disclaimer The information contained in this document represents the current view of Microsoft Corporation on the issues discussed as of the date of publication. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information presented after the date of publication. This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, AS TO THE INFORMATION IN THIS DOCUMENT. Complying with all applicable copyright laws is the responsibility of the user. This work is licensed under the Creative Commons Attribution-NoDerivs-NonCommercial VLicense (which allows redistribution of the work). To view a copy of this license, visithttp://creativecommons.org/licenses/by-nd-nc/1.0/ or send a letter to Creative Commons, 559 Nathan Abbott Way, Stanford, California 94305, USA. Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in this document. Except as expressly provided in any written license agreement from Microsoft, the furnishing of this document does not give you any license to these patents, trademarks, copyrights, or other intellectual property. The example companies, organizations, products, people and events depicted herein are fictitious. No association with any real company, organization, product, person or event is intended or should be inferred.
    [Show full text]
  • User's Manual 2
    USER'S MANUAL 2 - © 2018. All Rights Reserved. Nitro 5 Covers: AN515-42 / AN515-52 This revision: March 2018 Important This manual contains proprietary information that is protected by copyright laws. The information contained in this manual is subject to change without notice. Some features described in this manual may not be supported depending on the Operating System version. Images provided herein are for reference only and may contain information or features that do not apply to your computer. Acer Group shall not be liable for technical or editorial errors or omissions contained in this manual. Register your Acer product 1. Ensure you are connected to the Internet. 2. Open the Acer Product Registration app. 3. Install any required updates. 4. Sign up for an Acer ID or sign in if you already have an Acer ID, it will automatically register your product. After we receive your product registration, you will be sent a confirmation email with important data. Model number: _________________________________ Serial number: _________________________________ Date of purchase: ______________________________ Place of purchase: ______________________________ Table of contents - 3 TABLE OF CONTENTS First things first 6 BIOS utility 39 Your guides ............................................. 6 Boot sequence....................................... 39 Basic care and tips for using your Setting passwords ................................. 39 computer.................................................. 6 Power management 40 Turning your computer off..........................
    [Show full text]
  • Download Win 10 Version 1809
    download win 10 version 1809 How to Manually Install Windows 10 1809 October 2018 Update (Updated) Microsoft released Windows 10 October 2018 Update version 1809 and if you don’t want to get it via Windows Update you can manually install it. Microsoft recently announced that the latest Windows 10 feature update, Windows 10 October 2018 update Version 1809, is now available. In addition to security and performance improvements, this version also includes several new features. In addition, there are improvements to the UI, including Dark Mode for File Explorer, the new Your Phone app, a new screenshot tool, and a lot more. Just like previous feature updates, this one will roll out over Windows Update in staggered phases depending on the system you’re running it on. But some of you might want to install it or do a clean install manually. Manually Install Windows 10 1809. An easy way to manually install the new feature update is to use Microsoft’s own utility. To get started, head to the Windows 10 Download page and click the Update now button to download the Update Assistant tool. From this point on, the process of upgrading is straightforward. Launch the tool, and it will check your system for compatibility and download the update. Note that doing it this way, your current files, apps, and settings will be kept. It’s also worth mentioning that you can cancel the update by clicking in mind you can cancel the update while it’s running if you have second thoughts while it’s running.
    [Show full text]
  • Powerpanel Personal Edition User Manual
    PowerPanel Personal Edition User Manual User Manual PowerPanel® Personal Edition Rev. 9 2015/12/2 PowerPanel Personal Edition User Manual ELECTRONIC END USER LICENSE AGREEMENT FOR CYBERPOWER POWERPANEL PERSONAL EDITION NOTICE TO USER: THIS IS A CONTRACT. BY INSTALLING THIS SOFTWARE YOU ACCEPT ALL THE TERMS AND CONDITIONS OF THIS AGREEMENT. The End User License Agreement and copyright of CyberPower PowerPanel® Personal Edition product and related explanatory materials ("Software") are owned by Cyber Power Systems (USA), Inc. The term "Software" also shall include any upgrades, modified versions or updates of the Software licensed to you by Cyber Power Systems (USA), Inc. Please read this Agreement carefully. At the end, you will be asked to accept this agreement and continue to install or, if you do not wish to accept this Agreement, to decline this agreement, in which case you will not be able to use the Software. Upon your acceptance of this Agreement, The Cyber Power Systems (USA), Inc. grants to you a nonexclusive license to use the Software, provided that you agree to the following: 1. Use of the Software. You may install the Software on a hard disk or other storage device; install and use the Software on a file server for use on a network for the purposes of (i) permanent installation onto hard disks or other storage devices or (ii) use of the Software over such network; and make backup copies of the Software. You may make and distribute unlimited copies of the Software, including copies for commercial distribution, as long as each copy that you make and distribute contains this Agreement, the CyberPower PowerPanel® Personal Edition installer, and the same copyright and other proprietary notices pertaining to this Software that appear in the Software.
    [Show full text]
  • Windows 10 Insider Preview Build 17763 the Final!
    Windows 10 Insider Preview Build 17763 The Final! 1 / 5 Windows 10 Insider Preview Build 17763 The Final! 2 / 5 3 / 5 Windows 10 Insider Preview Build 17763 ... that Microsoft is “beginning the phase of checking in final code to prepare for the final release,” in Microsoft's words. Windows 10 Insider Preview Build 17763 will be RTM version ... the final release of Windows Server 2019, Version 1809, #LTSC and #SAC .... on announcement of insider 18298, I installed it. ... Insiders in the Slow ring running older builds need to update to Build 17763 (the final build for the ... -windows-10-insider-preview-build-18290/#JXQz3xoIzbTegKMH.97 ... Build 17763 is released version of Win 10 and you can download ISO from here.. and i roll back to 16232. Windows 10 Insider Preview 16251.0 (rs3_release) (2) error Last failed install attempt on ‎7/‎28/‎2017 - 0x80070643.. Windows 10 October 2018 Update: Could build 17763 be the final ... The latest Windows 10 Insider Preview for version 1809 or Redstone 5 is .... Microsoft will reportedly give Windows 10 preview 17763 to OEMs as the final build ... in conjunction with Windows 10 Insider Preview (Build 17763 or greater). Assassin’s Creed 3 PC Games Download Yet another preview of Windows 10 October 2018 Update (build 17763) outs to Insiders with more fixes to stabilize the final version. Avatar for ... Bullies Children Acting Out: The Rebellion of Attention Seeking Disorder CSS – a guide for the unglued Nero Burning ROM 2018 19.0.00800 Full Crack Serial Number Download Another week, another Insider Preview build for those in the Fast ring! Today's build is 17763, and is one of the last builds Insiders are going to ..
    [Show full text]
  • Support Newsletter Issue 30
    RM Education RM Support Newsletter Issue 30 Support Newsletter Issue 30 Included in this issue • Moving to Windows 10 – Avoiding common issues • CC4 news and updates (Windows 10 v1809, UEV update and CC4UPD218) • Intune for Education and Printix cloud printing • Office 2019 for CC4 • RM Unify – RM recommendations for summer work • RM Seminars – Autumn 2019 information • New research identifies issues with online safety in schools 1 RM Education [email protected] Support Newsletter Issue 30 Support Newsletter July 2019 Welcome to issue 30 of the support newsletter. This is the summer 2019 edition and so is heavily focussed on your ‘summer refresh’. We know that many customers will be looking to move to Windows 10 as the demise of Windows 7 rapidly approaches (January 2020 – now less than six months away). As such you’ll find attached to the email of this newsletter a PDF file named ‘Moving to Windows 10 – Avoiding common issues’, which we recommend that all customers read through (there are also links to this PDF below if you are reading the online version of the newsletter). As well as moving to Windows 10, there’s also a section for RM Unify customers giving some advice and recommendations for summer work too. This newsletter also includes the normal security information, updates and development news. Please do feed back suggestions for content you’d like to see us cover in the future – email us at [email protected]. Please note you may be the only person within your establishment to receive this newsletter so please pass on to your colleagues.
    [Show full text]
  • Oracle® VM Paravirtual Drivers Installation Guide for Microsoft Windows for Release 3.1.1 E27311-02 May 2012
    Oracle® VM Paravirtual Drivers Installation Guide for Microsoft Windows for Release 3.1.1 E27311-02 May 2012 Copyright © 2011, 2012, Oracle and/or its affiliates. All rights reserved. Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners. Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. AMD, Opteron, the AMD logo, and the AMD Opteron logo are trademarks or registered trademarks of Advanced Micro Devices. UNIX is a registered trademark of The Open Group. This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited. The information contained herein is subject to change without notice and is not warranted to be error- free. If you find any errors, please report them to us in writing. If this is software or related documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, the following notice is applicable: U.S. GOVERNMENT RIGHTS Programs, software, databases, and related documentation and technical data delivered to U.S.
    [Show full text]
  • 3 Adquisición De Bienes Y Servicios Código Bs – Fr – 025 Formato
    PROCESO Versión: 3 CÓDIGO ADQUISICIÓN DE BIENES Y SERVICIOS BS – FR – 025 FORMATO Estudios Previos – Procesos Públicos De Selección Página 1 de 101 1. DESCRIPCIÓN DE LA NECESIDAD QUE LA ENTIDAD ESTATAL PRETENDE SATISFACER CON EL PROCESO DE CONTRATACIÓN (Art. 2.2.1.1.2.1.1 Numeral 1 Decreto 1082 de 2015). 1.2 JUSTIFICACIÓN DE 1.1. Justificación de la necesidad LA CONTRATACIÓN De acuerdo con lo establecido en la Ley 1967 de 2019, el objetivo del Ministerio es formular, adoptar, dirigir, coordinar, inspeccionar, vigilar, controlar y ejecutar la política pública, planes, programas y proyectos en materia del deporte, la recreación, el aprovechamiento del tiempo libre y la actividad física para promover el bienestar, la calidad de vida, así como contribuir a la salud pública, a la educación, a la cultura, a la cohesión e integración social, a la conciencia nacional y a las relaciones internacionales, a través de la participación de los actores públicos y privados. Aunado a lo anterior el inciso segundo del artículo 8 de la Ley 1967 de 2019 expresamente señala: “Los servidores públicos que a la entrada en vigencia de la presente ley se encontraban vinculados al Ministerio quedarán automáticamente incorporados en la planta de personal del Ministerio del Deporte”. Y el artículo 10 de la misma Ley también dice: “Contratos y convenios vigentes. Los contratos y convenios vigentes suscritos por el continuarán ejecutándose por el Ministerio del Deporte, sin que para ello sea necesario suscripción de documento adicional alguno diferente a la comunicación a los respectivos contratistas. Para todos los efectos contractuales, el Ministerio del Deporte asume los derechos y obligaciones del Departamento Administrativo del Deporte, la Recreación, la Actividad Física y el Aprovechamiento del Tiempo Libre (Coldeportes).
    [Show full text]
  • Microsoft Windows Common Criteria Evaluation Security Target
    Microsoft Common Criteria Security Target Microsoft Windows Common Criteria Evaluation Microsoft Windows 10 version 1809 (October 2018 Update) Microsoft Windows Server 2019 (October 2018 Update) Security Target Document Information Version Number 0.05 Updated On June 18, 2019 Microsoft © 2019 Page 1 of 126 Microsoft Common Criteria Security Target Version History Version Date Summary of changes 0.01 June 27, 2018 Initial draft 0.02 December 21, 2018 Updates from security target evaluation 0.03 February 21, 2019 Updates from evaluation 0.04 May 6, 2019 Updates from GPOS PP v4.2.1 0.05 June 18, 2019 Public version Microsoft © 2019 Page 2 of 126 Microsoft Common Criteria Security Target This is a preliminary document and may be changed substantially prior to final commercial release of the software described herein. The information contained in this document represents the current view of Microsoft Corporation on the issues discussed as of the date of publication. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information presented after the date of publication. This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, AS TO THE INFORMATION IN THIS DOCUMENT. Complying with all applicable copyright laws is the responsibility of the user. This work is licensed under the Creative Commons Attribution-NoDerivs- NonCommercial License (which allows redistribution of the work). To view a copy of this license, visit http://creativecommons.org/licenses/by-nd-nc/1.0/ or send a letter to Creative Commons, 559 Nathan Abbott Way, Stanford, California 94305, USA.
    [Show full text]