Microsoft introduced a technology called PatchGuard in Windows XP Professional x64 Edition in an attempt to make it really difficult for sophisticated malware to take root in an OS, and they are apparently extending it into Windows Vista x64 variants as well, which is making security software developers annoyed. PatchGuard prevents any 3rd party extensions to the kernel (the core of the Operating System), to prevent viruses and rootkits from gaining god-mode on Windows, where virus and malware scanners cannot even detect them.

This is a swell idea, except that companies like Symantec use kernel extensions to peddle their wares. With PatchGuard, Microsoft themselves will have to provide security solutions, which according to many security experts is steadily improving. Despite the panic expressed by companies who develop intrusion prevention software, this isn't really anything to worry about. Only a certain market of security software will be affected; a market you could probably do without.

Microsoft apparently had a choice of either leaving the door open, for money hungry security software developers and malicious individuals alike, or lock it. PatchGuard was the correct thing to do in terms of security, but it wasn’t necessarily the most intelligent solution.

ZDNet reports

Isn't this a bad idea??

If everyone with that OS is forced to have the same Anti Virus, once someone finds a way to get a virus through one Anti-Virus, they have found away to get through them all?

__________________
I Beat Anorexia.

If I have helped you, please consider donating a little cash to Cancer Research UK

Security software companies will likely stir up exactly this kind of panic among consumers, since their lively hoods depend on selling their products.

Only software that is trying to plug directly into the kernel itself will be affected. We're talking about the core of the OS, where programs get executed, memory is managed etc. Deeper even than drivers. Much deeper than things like the TCP/IP stack and Application Programming Interfaces.

Anti-virus software wont be affected, neither will most firewall software. In reality, no software should be patching the kernel in the first place; there should be no need. This would be akin to a household alarm installer insisting they need to insert an electrode into your brain because they feel that the risk to your mind is less important than keeping your body safe.