Download - Descubre todo sobre: Novedades de Windows 7
Descubre todo sobre: Novedades de Windows 7
28/09/2010
STEP220
David NudelmanMVP Windows Desktop Experience
SecondNug www.secondnug.com
Microsoft Learning
Springboard www.microsoft.com/springboard
David Nudelman
Co-fundador de la comunidad IT Pro de SecondNugMicrosoft MVP – Windows Desktop ExperienceMicrosoft Learning IT Manager Advisory Council STEP (Springboard Series Technical Expert Panel)Equipo TechNet Spain en Twitter y FacebookModerador de los foros de TechNet en EspanolSenior Microsoft Consultant – Ultima Business Solutions
David Nudelman
User Experience
Desktop Interface
Windows Aero® User Experience- Includes fluid animation and
transparent glass Basic and Classic Themes- Classic theme turns off Windows
Aero for a more Windows 2000–like UI
Dynamic Scaling - For higher dots-per-inch (DPI)
screens, Windows Aero can scale up the desktop experience so that low DPI–aware controls and applications can still be used.
Windows Flip and Flip 3D
Windows Flip- Update to the
ALT+TAB feature- Shows live thumbnails
Windows Flip 3D- Windows Logo key
+TAB- Three-dimensional,
stacked view
Windows 7 Superbar
QuickLaunch and Taskbar combined
Pin applications
Jump Lists
Live Taskbar Thumbnails
Desktop Gadgets
Windows Sidebar removed
All gadgets reside directly on the desktop
Gadgets offer the same functionality and interface
The Start Menu
Search applications, documents, and moreFrequently and recently used applications on the leftCommon folders and utilities on the rightRecent documents now attached to application as a submenu
Presentation Mode
Automatically detects wired and wireless connections to presentation devices
Options for disabling screensaver and desktop background
Press WIN+P for an instant menu
Windows SuperFetch and ReadyBoost
SuperFetch - Memory manager for Windows 7- Analyses and optimizes memory usage
ReadyBoost- Uses nonvolatile flash storage device
to boost system performance
- Uses Windows SuperFetch to store cache of performance-critical data for fast access
- Significantly outperformsconventional disk media
- Cache data is compressed (2:1) and encrypted
Windows Explorer Libraries
User-defined collections of data
Helps reduce problems with storing data in multiple locations
Library locationsare indexed
Default libraries:- Documents- Music- Pictures- Videos
Dynamic Driver Provisioning
Store drivers centrally on deployment servers, separate from images
Install drivers dynamically or assign sets of drivers based on basic input/output system (BIOS) information
Reduce size of images
Reduce number of images maintained
Don’t need to update images when introducing new hardware into environment
VHD Image Management and Deployment
Microsoft Virtual Hard Disk (VHD) file format is a publicly available format specification.
Used by:- Microsoft® Windows®
Server 2008 Hyper-V™- Microsoft® Virtual Server- Microsoft® Virtual PC
Windows 7 adds support for virtual disks in Disk Management
Native VHD boot allows Windowsimage in a VHD file to boot on physical machine
Windows 7 Security
User Access Control (UAC)
Previous binary UAC control now scalar
Granular level of control with Group Policy
Number of tasks for standard user increased
Perceived “annoyance” of UAC tweaked sousers now control level
Group policy options improved
Previous non-administrative tasks requiring administrative rights changed
Internet Explorer 8 Protected Mode
Protecting users- Protect users against social engineering and privacy exploits- Protect users against browser-based exploits- Protect users against Web server exploits
New Features- InPrivate Browsing- SmartScreen Filter- Domain Highlighting- Cross-Site Scripting (XSS) Filter- Internet Explorer Protected Mode
Multiple Active Firewall Profiles
Domain, Public, and Private firewall profiles can now all be active at the same time
No configuration required to enable feature
All firewall configuration should be managed with Group Policy or netsh.exe
This... becomes this
Windows Service Hardening
Continues concept of per-service security identifier, which allows access control lists for certain areas of a service
Allows partitioning of the service into public and private actions, reducing the options of malware that could attempt to use the protected service
Many services no longer run under the LocalSystem context but instead run under either LocalService or NetworkService, which both have fewer rights
BitLocker Drive Encryption
Hard-disk encryption technology using the Advanced Encryption Standard
Automatic 200-MB hidden boot partition
New Key ProtectorsDomain Recovery Agent (DRA)Smart card – data volumes only
BitLocker™ Drive Encryption requirements:A Trusted Platform Module (TPM) 1.2 or later (unless USB-key-only mode is used)A system BIOS compliant with version 1.2 or later Trusted Computing Group
BitLocker To Go™
Permits encryption of removable media using Windows® BitLocker®
Devices can be unlocked with password or smartcard
Backwards compatible
With smart cards, Smart Card Plug and Play should be implemented
Recover data from any BitLocker To Go device when accessible.
For Windows® XP or Windows® Vista, users will need to run BitLockerToGo.exe
Network
Network Location Type
Allows Windows to automatically configure security and other settings based on the type of network to which the computer is connected.
Windows network location types:- Domain- Public- Private
Network and Sharing Center
Provides a clear and concise status of all of the computers’ network connections Displays visually whether connected to networksAssists in troubleshooting connectivity problemsNetwork Map helps users visualize connected networks
Wireless Support
Layer 2 network authentication, such as 802.1x, ensures that only appropriate users or devices are allowed to connect to a protected network.
Data secure at radio transmission level.
Single sign-on (SSO) feature executes Layer 2 network authentication at the appropriate time given the network security configuration.
Increased manageability through Group Policy objects.
Netsh command enables automation and scripting.
Wireless diagnostics capabilities as part of the extensible Network Diagnostics Framework (NDF).
IPv6
Natively supports TCP/IP version 6 (IPv6)
IPv6 transition technologies that allow clients in TCP/IP version 4 (IPv4) networks to handle IPv6 in different scenarios:- Native IPv6- Teredo- Intra-Site Automatic Tunnel Addressing Protocol (ISATAP)- 6to4Security Enhancements
Better Quality of Service
IPSec is automatically supported
DirectAccess
Enables remote users to securely access enterprise shares, Web sites, and applications without connecting to a virtual private network (VPN).
Establishes bidirectional connectivity with a user’s enterprise network every time a user’s DirectAccess-enabled portable computer connects to the Internet.
IT administrators can manage remote computers outside the office, even when computers are not connected to the VPN.
BranchCache
BranchCache™ is available when combining Windows 7 computers with Windows Server 2008 R2 servers.
Enables content from file and Web servers on a wide area network (WAN) to be cached on computers at a local branch office.
Improves application response time and reduces WAN traffic.
Cached content can either be distributed across peer client computers (Distributed Cache mode) or centrally hosted on a server (Hosted Cache mode).
Mobile Broadband
Driver-based model for mobile broadband devices
Previous Windows versions required third-party software, which can be difficult to manage
Interface in Windows 7 is the same regardless of the mobile broadband provider, reducing the need for training and management efforts
DNS Security Extensions
DNS offers no inherent security, making it vulnerable to spoofing and other attacks.
Domain Name System Security Extensions (DNSSEC) provides:- Origin authority- Data integrity- Authenticated denial of existence
Introduces four new resource records:- DNSKEY- RRSIG- NSEC- DS
User Functionality
Group Policy Configuration
Many more Group Policy settings available for Windows 7
Notable settings include:- Power management- Blocking device installation- Security settings- Printers- UAC
User Profiles
Namespace of user-specific folders isolated for user and application data
User profiles stored in the “Users” folder in root folder of the system drive
Fewer nested folders to ease navigation
Folder names are more intuitive to the data contained
Local and LocalLow folders contain application data that does not roam with the user
Roaming folder contains application-specific data that are machine independent and roam with the user profile
All User profiles equate to the Public profile
Folder Redirection
Client-side technology that provides the ability to change the target location of predetermined folders found within the user profile
Separates user data from profile data, which decreases user logon times
Windows 7 allows redirection of 10 folders from a user profile
.
Language Support
Multilingual User Interface (MUI) architecture separates the language resources for the UI from the binary code of the operating system
Allows changing of languages without changing core binaries of Windows 7
Languages are applied as language packs containing localization resources
Windows 7 MUI implementation consists of:- Language-neutral binaries- Language packs
Mobility
Power Management
Promotes the use of sleep, which is faster and more reliable than previous versions
More control over how computers manage power
Simpler and more reliable power-management experience
Default power plans:- Balanced- Power Saver- High Performance
Windows® ReadyDrive™
Hybrid hard disk drives contain traditional hard disk and integrated nonvolatile flash memory that acts as a high-performance cache.
Significant power savings when running on battery because hard drive spins up only when write buffer fills up.
No user action or configuration required.
Windows Mobility Center
Most frequently used portable computer settings in a single location
Allows Tablet PC users to rotate display
Offline Files
Delta synchronization instead of per-file synchronization
Quicker synchronization and less network traffic
Local cache stored and encrypted on a per-user basis
Transparent offline-to-online transition
Consistent view of namespace whether online or offline
Client-side cache no longer marks down entire Distributed File System (DFS) namespace if target server goes offline; instead, only links to unavailable server are marked as offline
Diagnostics and Recovery
Built-In Diagnostics
Disk Diagnostics detects impending disk failures and guides users through data backup, disk replacement, and data restoration procedures.
Memory Diagnostics and Microsoft Online Crash Analysis detects crashes due to failing memory, provides guided support, and prompts the user to schedule memory test.
Resource Exhaustion Detection and Recovery warns users when critical resources are low—before a hang or crash occurs.
System Restore
Allows recovery from a greater range of changes
Uses shadow copy instead of file filter system
Improves integration with other aspects of backup and recovery
STEP220
http://tinyurl.com/STEP220
David Nudelman
http://www.facebook.com/windows7guy
http://linkedin.com/in/dnudelman
@dnudelman / @Technet_es
Q&A
Gracias!