NewsArchive
10-09-2012, 09:12 AM
-- PART II: New SB8 Enhanced Stub Loader Technology --
BinScope Binary Analyzer is a Microsoft verification tool that analyzes
applications on a project-wide level to ensure that they have been built in
compliance with Microsoft's Security Development Lifecycle (SDL)
requirements and recommendations. BinScope checks that SDL-required
compiler/linker flags are being set to determine if they are leveraging
security mitigations (Buffer Overflow, Data Execution Prevention (DEP),
etc.).
SetupBuilder .EXE applications produced with versions prior 8.0 failed the
modern BinScope Binary Analyzer verification process and the new Windows 8
App Certification Kit reported the following error messages:
....\app.exe has failed the NXCheck check.
....\app.exe has failed the SafeSEHCheck check.
....\app.exe has failed the DBCheck check.
If an app doesn't use the available Windows protections, it can increase the
vulnerability of customer's computer to malware. It took a lot of research
and development to make sure that the SetupBuilder .EXE files are built in
compliance with Microsoft's Security Development Lifecycle (SDL)
requirements and recommendations.
The new SetupBuilder 8.0 stub loader...
....is compatible with the Windows Data Execution Prevention feature.
....has Safe Exception Handlers.
....can be randomly rebased at load time by using the address space layout
randomization (ASLR) feature of Windows Vista+
As a result, SetupBuilder 8 produced installation and uninstall files, the
standard Web Update clients and helper tools no longer give Windows 8
'Desktop App' Windows App Certification warnings!
-- But what about Windows 9x, NT4, and ME? --
We know that quite a few developers still have to support the older Windows
operation systems. The good news is that our SetupBuilder 8 application
loader technology is backward compatible with Windows 9.x, NT4 and ME. It
supports the new SDL-required compiler/linker flags but can still be used on
outdated operating systems. Setup files created with other installation
vendors' products report an "Setup.exe file expects a newer version of
Windows. Upgrade your Windows version." in this scenario.
EnjoySetup...
More Win8 stuff to come...
--
Friedrich Linder
Lindersoft
www.lindersoft.com
+1.954.252.3910
Helping You Build Better Installations
SetupBuilder "point. click. ship"
Official Comodo Code Signing and SSL Certificate Partner
BinScope Binary Analyzer is a Microsoft verification tool that analyzes
applications on a project-wide level to ensure that they have been built in
compliance with Microsoft's Security Development Lifecycle (SDL)
requirements and recommendations. BinScope checks that SDL-required
compiler/linker flags are being set to determine if they are leveraging
security mitigations (Buffer Overflow, Data Execution Prevention (DEP),
etc.).
SetupBuilder .EXE applications produced with versions prior 8.0 failed the
modern BinScope Binary Analyzer verification process and the new Windows 8
App Certification Kit reported the following error messages:
....\app.exe has failed the NXCheck check.
....\app.exe has failed the SafeSEHCheck check.
....\app.exe has failed the DBCheck check.
If an app doesn't use the available Windows protections, it can increase the
vulnerability of customer's computer to malware. It took a lot of research
and development to make sure that the SetupBuilder .EXE files are built in
compliance with Microsoft's Security Development Lifecycle (SDL)
requirements and recommendations.
The new SetupBuilder 8.0 stub loader...
....is compatible with the Windows Data Execution Prevention feature.
....has Safe Exception Handlers.
....can be randomly rebased at load time by using the address space layout
randomization (ASLR) feature of Windows Vista+
As a result, SetupBuilder 8 produced installation and uninstall files, the
standard Web Update clients and helper tools no longer give Windows 8
'Desktop App' Windows App Certification warnings!
-- But what about Windows 9x, NT4, and ME? --
We know that quite a few developers still have to support the older Windows
operation systems. The good news is that our SetupBuilder 8 application
loader technology is backward compatible with Windows 9.x, NT4 and ME. It
supports the new SDL-required compiler/linker flags but can still be used on
outdated operating systems. Setup files created with other installation
vendors' products report an "Setup.exe file expects a newer version of
Windows. Upgrade your Windows version." in this scenario.
EnjoySetup...
More Win8 stuff to come...
--
Friedrich Linder
Lindersoft
www.lindersoft.com
+1.954.252.3910
Helping You Build Better Installations
SetupBuilder "point. click. ship"
Official Comodo Code Signing and SSL Certificate Partner