The wide application of Windows operation system people is bringing higher request for the security of the system. Identification and authorization are the most basic means to protect the resources of the computer, which is improved in security level in this paper on the logon model of the Windows. We first discuss the advantages and disadvantages of several existing logon mechanisms. To overcome the weakness of these models, we propose a framework for password function security enhancement of Windows operation system via investigating the Windows logon authentication consisting of Winlogon and GINA, authentication package and password filter. The framework can provide flexible interfaces for various types of logon models, and the password stored in the SAM database can be changed automatically while the access operation is authenticated. In the framework design, we separate the logon credential collection and validation module, which makes the system more flexible and convenient for redevelopment.
展开▼