Analyzing threads and processes in Windows CE

摘要

Windows CE 3.0, also known as Pocket PC for palm-sized devices, is becoming increasingly popular among professionals and corporate enterprises. It is estimated that by 2004 Windows CE will have a share of 40% of the marketplace for palm-sized devices. The documented vulnerabilities against a major competitor of WinCE, Palm, and the proliferation of palm-sized devices highlight the need for security for these small-scale systems. This thesis is part of a larger project to enhance the security in WinCE. This thesis analyzed the threads and processes in WinCE, and discusses authentication, public key infrastructure (PKI) and future technologies as each relates to WinCE. The research discovered that Talisker, the next generation of WinCE, supports Kerberos an authentication protocol, and it also supports PKI (a key management system) components. Results of this thesis show that security can be enhanced in WinCE without requiring a change to its code base.