中文摘要：

随着互联网的普及与快速发展,信息系统的安全问题日益突出,导致安全风险明显增加。信息系统、网络及网络应用受到越来越多的攻击,黑客攻击也日趋先进、成熟和多样化。Windows作为世界范围内的主流操作系统,自然受到黑客更多的注目与青睐。面对黑客日益先进和不断改进的攻击,微软不断推出具有新安全特色的新版本Windows。其中,可控性的改进对降低安全风险十分重要。可控性的改进不但需要保证系统的安全风险可控,还要在一定程度上使用户也能控制安全风险。文章分析和讨论了Windows 8引入了哪些新的安全机制,改进了哪些已有的安全措施,对提高系统的安全风险可控性有哪些影响和作用。

英文摘要：

With the popularization and rapid development of intemet, the problems concerning information security have become increasingly prominent, causing increasing security risks. Information systems, networks, and network applications have been attacked frequently, and the attacking methods have become increasingly sophisticated, mature, and diverse. As the most popular OS worldwide, Windows system naturally has received more attacks than others. Facing the more advanced attacks, Microsoft constantly launches new version of Windows with new security features. Among these security features, the improvement of controllability is important to reduce security risks. Not only the security risk controllability of an information system should be assured, but also the users can control the security risks to a certain extent. This paper analyzes and discusses what new security mechanisms have been introduced based on Windows 8, and what existing security solutions have been improved in this new version, and lastly how these new measures impact on the security risk controllability.