New features introduced by Windows Vista are very numerous, encompassing significant functionality not available in its predecessors.
End-user •
Windows Aero is the new graphical user interface, which Jim Allchin stated is an acronym for
Authentic, Energetic, Reflective, and Open. Microsoft intended the new interface to be cleaner and more aesthetically pleasing than those of previous Windows versions, and it features advanced visual effects such as blurred glass translucencies and dynamic glass reflections and smooth window animations. and reduces performance. Windows Aero requires a
compositing window manager called
Desktop Window Manager. •
Windows Shell offers a new range of organization, navigation, and search capabilities: Task Panes in
Windows Explorer are removed, with the relevant tasks moved to a new command bar. The navigation pane can now be displayed when tasks are available, and it has been updated to include a new "Favorite Links" that houses shortcuts to common locations. An
incremental search search box now appears at all times in Windows Explorer. The address bar has been replaced with a
breadcrumb navigation bar, which means that multiple locations in a hierarchy can be navigated without needing to go back and forth between locations. Icons now display thumbnails depicting contents of items and can be dynamically scaled in size (up to 256 × 256 pixels). A new preview pane allows users to see thumbnails of items and play tracks, read contents of documents, and view photos when they are selected. Groups of items are now selectable and display the number of items in each group. A new details pane allows users to manage
metadata. There are several new sharing features, including the ability to directly share files. The
Start menu also now includes an incremental search box — allowing the user to press the key and start typing to instantly find an item or launch a program — and the
All Programs list uses a vertical scroll bar instead of the cascading flyout menu of Windows XP. •
Windows Photo Gallery replaces Windows Picture and Fax Viewer; it can acquire photographs from digital cameras; adjust photograph effects; burn photographs to optical media; create
Direct3D-accelerated slideshows; and reduce
red eye. •
Windows Media Center previously exclusive to
Windows XP Media Center Edition is available in Windows Vista Home Premium and Windows Vista Ultimate; it has been updated with many new features such as support for
CableCARD, DVD/MPEG-2, HD content, and two dual-tuner cards. •
Parental controls allow administrators to control and manage user activity (such as limiting the games that can be played or prohibiting specific contents of websites) of each standard user. New games include
Chess Titans (3D
Chess),
Mahjong Titans (3D
Mahjong), and
Purble Place (a collection consisting of a cake-creation game, a
dress-up puzzle game, and a matching game oriented towards younger children). All in-box games in Windows Vista can be played with an
Xbox 360 Controller. •
Games Explorer is the central location for installed games that displays details such as covers, developers, genres, installation dates, play times, publishers, ratings, and versions. Customizable tasks for games are available; metadata for installed games can be updated from the Internet. Game-related settings such as audio options, community support options, game controller options, firewall settings, and parental controls are displayed. •
Windows Mobility Center centralizes settings and statuses relevant to mobile computing such as battery life, connectivity status, display brightness, screen orientation, synchronization status, and volume level, and new options can be added by OEMs. •
Windows Fax and Scan allows machines to create, receive, scan, and send faxes, with the goal of making fax management identical to working with email; it is available in Windows Vista Business, Windows Vista Enterprise, and Windows Vista Ultimate. •
Windows Meeting Space replaces
NetMeeting and relies on
People Near Me and
WS-Discovery to identify participants on the local subnet or across the Internet; users can give control of their computers to other participants, project their desktops, send messages to participants, and share files. •
Windows HotStart enables compatible computers to start applications directly from startup or resume by the press of a button, which allows them to function as a
consumer electronics device such as a
DVD player. •
Shadow Copy (originally only available in Windows Server 2003) creates copies of files and folders on a scheduled basis, allowing users to recover multiple versions of deleted or overwritten files or folders. Incremental changes are saved by shadow copies, which helps to limit the disk space in use. •
Windows Update is now a native client application; in previous versions of Windows, it was a
web application that had to be accessed from a web browser. Automatic Updates can now automatically download and install
Recommended updates (in addition to
High Priority updates that could be automatically downloaded and installed in previous versions of Windows). The prompt that appears when an update is installed that requires a machine to be
restarted has been revised, with new options to postpone an operating system restart indefinitely, by 10 minutes, by 1 hour, or by 4 hours (in Windows XP, users could only repeatedly dismiss the prompt to restart, or allow the machine to be restarted within 15 minutes of its appearance). Windows Defender definitions and Windows Mail spam filter are delivered through Windows Update. •
Windows SideShow delivers data such as messages and feeds from a personal computer to additional devices and displays, which makes data available in mobile scenarios; compatible devices could additionally transmit commands to applications, devices, or systems connected to a computer (e.g., a smart phone can control a presentation). the release of
.NET Framework 3.5 SP1 in 2008 removes this capability when installed in Windows Vista. Magnifier can now be docked to the bottom, left, right, or top of the screen. •
Windows Speech Recognition is new
speech recognition functionality that enables
voice commands for controlling the desktop;
dictating documents; navigating websites; operating the
mouse cursor; and performing
keyboard shortcuts. •
Reliability and Performance Monitor includes various tools for tuning and monitoring system performance and resources activities of
CPU, disks, network, memory and other resources. It shows the operations on files, the opened connections, etc. •
Windows System Assessment Tool performs a series of assessments of a system's CPU,
GPU,
RAM, and
HDD performance and assigns to the system a rating from 1.0 to 5.9; a system is rated during the
out-of-box experience to determine if Windows Aero should be enabled. purchases were managed with
Microsoft account credentials. •
Windows Ultimate Extras in Windows Vista Ultimate provided additional features such as BitLocker and
EFS improvements that allowed users to back up their encryption
keys;
Multilingual User Interface packages; and
Windows Dreamscene, which allowed using
MPEG and
WMV videos as the desktop background.
Core Vista includes technologies such as
ReadyBoost and
ReadyDrive, which employ fast
flash memory (located on
USB flash drives and
hybrid hard disk drives) to improve system performance by caching commonly used programs and data. This manifests itself in improved battery life on notebook computers as well, since a hybrid drive can be spun down when not in use. Another new technology called
SuperFetch utilizes
machine learning techniques to analyze usage patterns to allow Windows Vista to make intelligent decisions about what content should be present in system memory at any given time. It uses almost all the extra RAM as
disk cache. In conjunction with SuperFetch, an automatic built-in
Windows Disk Defragmenter makes sure that those applications are strategically positioned on the hard disk where they can be loaded into memory very quickly with the least physical movement of the hard disk's read-write heads. As part of the redesign of the networking architecture,
IPv6 has been fully incorporated into the operating system and a number of performance improvements have been introduced, such as
TCP window scaling. Earlier versions of Windows typically needed third-party wireless networking software to work properly, but this is not the case with Vista, which includes more comprehensive wireless networking support. For graphics, Vista introduces a new
Windows Display Driver Model and a major revision to
Direct3D. The new driver model facilitates the new
Desktop Window Manager, which provides the
tearing-free desktop and special effects that are the cornerstones of Windows Aero. Direct3D 10, developed in conjunction with major graphics card manufacturers, is a new architecture with more advanced
shader support, and allows the
graphics processing unit to render more complex scenes without assistance from the CPU. It features improved load balancing between CPU and GPU and also optimizes data transfer between them. WDDM also provides video content playback that rivals typical consumer electronics devices. It does this by making it easy to connect to external monitors, providing for protected HD video playback, and increasing overall video playback quality. For the first time in Windows, graphics processing unit (GPU) multitasking is possible, enabling users to run more than one GPU-intensive application simultaneously. At the core of the
operating system, many improvements have been made to the memory manager, process scheduler and I/O scheduler. The Heap Manager implements additional features such as integrity checking in order to improve robustness and defend against
buffer overflow security
exploits, although this comes at the price of breaking backward compatibility with some legacy applications. A
Kernel Transaction Manager has been implemented that enables applications to work with the
file system and
Registry using
atomic transaction operations.
Security-related Improved security was a primary design goal for Vista. Microsoft's
Trustworthy Computing initiative, which aims to improve public trust in its products, has had a direct effect on its development. This effort has resulted in a number of new security and safety features and an
Evaluation Assurance Level rating of 4+.
User Account Control, or UAC is perhaps the most significant and visible of these changes. UAC is a security technology that makes it possible for users to use their computer with fewer privileges by default, to stop
malware from making unauthorized changes to the system. This was often difficult in previous versions of Windows, as the previous "limited" user accounts proved too restrictive and incompatible with a large proportion of application software, and even prevented some basic operations such as looking at the calendar from the notification tray. In Windows Vista, when an action is performed that requires administrative rights (such as installing/uninstalling software or making system-wide configuration changes), the user is first prompted for an administrator name and password; in cases where the user is already an administrator, the user is still prompted to confirm the pending privileged action. Regular use of the computer such as running programs, printing, or surfing the Internet does not trigger UAC prompts. User Account Control asks for credentials in a Secure Desktop mode, in which the entire screen is dimmed, and only the authorization window is active and highlighted. The intent is to stop a malicious program from misleading the user by interfering with the authorization window, and to hint to the user about the importance of the prompt. Testing by
Symantec Corporation has proven the effectiveness of UAC. Symantec used over 2,000 active malware samples, consisting of
backdoors,
keyloggers,
rootkits, mass mailers,
trojan horses,
spyware,
adware, and various other samples. Each was executed on a default Windows Vista installation within a standard user account. UAC effectively blocked over 50 percent of each
threat, excluding rootkits. 5 percent or less of the
malware that evaded UAC survived a reboot.
Internet Explorer 7's new security and safety features include a
phishing filter,
IDN with anti-spoofing capabilities, and integration with system-wide parental controls. For added security,
ActiveX controls are disabled by default. Also, Internet Explorer operates in a protected mode, which operates with lower permissions than the user and runs in isolation from other applications in the operating system, preventing it from accessing or modifying anything besides the Temporary Internet Files directory. Microsoft's anti-spyware product,
Windows Defender, has been incorporated into Windows, protecting against malware and other threats. Changes to various system configuration settings (such as new auto-starting applications) are blocked unless the user gives consent. Whereas prior releases of Windows supported per-file encryption using
Encrypting File System, the Enterprise and Ultimate editions of Vista include
BitLocker Drive Encryption, which can protect entire
volumes, notably the operating system volume. However, BitLocker requires approximately a 1.5-gigabyte partition to be permanently not encrypted and to contain system files for Windows to boot. In normal circumstances, the only time this partition is accessed is when the computer is booting, or when there is a Windows update that changes files in this area, which is a legitimate reason to access this section of the drive. The area can be a potential security issue, because a hexadecimal editor (such as dskprobe.exe), or malicious software running with administrator and/or kernel level privileges would be able to write to this "Ghost Partition" and allow a piece of malicious software to compromise the system, or disable the encryption. BitLocker can work in conjunction with a
Trusted Platform Module (TPM)
cryptoprocessor (version 1.2) embedded in a computer's
motherboard, or with a USB key. However, as with other
full disk encryption technologies, BitLocker is vulnerable to a
cold boot attack, especially where TPM is used as a
key protector without a boot
PIN being required too. A variety of other privilege-restriction techniques are also built into Vista. An example is the concept of "integrity levels" in user processes, whereby a process with a lower integrity level cannot interact with processes of a higher integrity level and cannot perform DLL–injection to processes of a higher integrity level. The security restrictions of
Windows services are more fine-grained, so that services (especially those listening on the network) cannot interact with parts of the operating system they do not need to.
Obfuscation techniques such as
address space layout randomization are used to increase the amount of effort required of
malware before successful infiltration of a system.
Code integrity verifies that system binaries have not been tampered with by malicious code. As part of the redesign of the network stack,
Windows Firewall has been upgraded, with new support for filtering both incoming and outgoing traffic. Advanced packet filter rules can be created that can grant or deny communications to specific services. The 64-bit versions of Vista require that all new
Kernel-Mode device drivers be digitally signed, so that the creator of the driver can be identified. This is also on par with one of the primary goals of Vista to move code out of kernel-mode into user-mode drivers, with another example bing the new
Windows Display Driver Model.
System management While much of the focus of Vista's new capabilities highlighted the new user interface, security technologies, and improvements to the core operating system, Microsoft also adding new deployment and maintenance features: • The
Windows Imaging Format (WIM) provides the cornerstone of Microsoft's new deployment and packaging system. WIM files, which contain a
HAL-independent image of Windows Vista, can be maintained and patched without having to rebuild new images. Windows Images can be delivered via
Systems Management Server or Business Desktop Deployment technologies. Images can be customized and configured with applications then deployed to corporate client personal computers using little to no touch by a system administrator.
ImageX is the Microsoft tool used to create and customize images. •
Windows Deployment Services replaces
Remote Installation Services for deploying Vista and prior versions of Windows. • Approximately 700 new
Group Policy settings have been added, covering most aspects of the new features in the operating system, as well as significantly expanding the configurability of wireless networks, removable storage devices, and user desktop experience. Vista also introduced an XML-based format (ADMX) to display registry-based policy settings, making it easier to manage networks that span geographic locations and different languages. •
Services for UNIX, renamed as "Subsystem for UNIX-based Applications", comes with the Enterprise and Ultimate editions of Vista.
Network File System (NFS) client support is also included. •
Multilingual User Interface–Unlike previous versions of Windows (which required the loading of language packs to provide local-language support), Windows Vista Ultimate and Enterprise editions support the ability to dynamically change languages based on the logged-on user's preference. • Wireless Projector support
Developer Windows Vista includes a large number of new application programming interfaces. Chief among them is the inclusion of
version 3.0 of the
.NET Framework, which consists of a
class library and
Common Language Runtime. Version 3.0 includes four new major components: •
Windows Presentation Foundation is a
user interface subsystem and framework based
vector graphics, which makes use of
3D computer graphics hardware and
Direct3D technologies. It provides the foundation for building applications and blending application UI, documents, and media content. It is the successor to
Windows Forms. •
Windows Communication Foundation is a service-oriented messaging subsystem that enables applications and systems to interoperate locally or remotely using
Web services. •
Windows Workflow Foundation provides task automation and integrated transactions using
workflows. It is the programming model, engine, and tools for building workflow-enabled applications on Windows. •
Windows CardSpace is a component that securely stores digital identities of a person, and provides a unified interface for choosing the identity for a particular transaction, such as logging into a website. These technologies are also available for
Windows XP and
Windows Server 2003 to facilitate their introduction to and usage by developers and end-users. There are also significant new development APIs in the core of the operating system, notably the completely re-designed audio, networking, print, and video interfaces, major changes to the security infrastructure, improvements to the deployment and installation of applications ("
ClickOnce" and
Windows Installer 4.0), new device driver development model ("
Windows Driver Foundation"),
Transactional NTFS, mobile computing API advancements (power management,
Tablet PC Ink support,
SideShow) and major updates to (or complete replacements of) many core subsystems such as
Winlogon and
CAPI. There are some issues for software developers using some of the graphics APIs in Vista. Games or programs built solely on the Windows Vista-exclusive version of
DirectX, version 10, cannot work on prior versions of Windows, as
DirectX 10 is not available for previous Windows versions. Also, games that require the features of D3D9Ex, the updated implementation of DirectX 9 in Windows Vista are also incompatible with previous Windows versions. According to a Microsoft blog, there are three choices for
OpenGL implementation on Vista. An application can use the default implementation, which translates OpenGL calls into the Direct3D API and is frozen at OpenGL version 1.4, or an application can use an Installable Client
Driver (ICD), which comes in two flavors: legacy and Vista-compatible. A legacy ICD disables the
Desktop Window Manager, a Vista-compatible ICD takes advantage of a new API, and is fully compatible with the Desktop Window Manager. At least two primary vendors,
ATI and
NVIDIA provided full Vista-compatible ICDs. However,
hardware overlay is not supported, because it is considered as an obsolete feature in Vista. ATI and NVIDIA strongly recommend using compositing desktop/
Framebuffer Objects for same functionality.
Installation Windows Vista is the first Microsoft operating system: • To use DVD-ROM media for installation • To provide during setup a selection of multiple editions of Windows available for installation (a license determines which version of Windows Vista is eligible for installation) • That can be installed only on a partition formatted with the
NTFS file system • That supports installation from either OEM or retail media and during setup the input of a single license regardless of the installation source (previous releases of Windows maintained OEM and retail versions separately — users installing Windows from a manufacturer-supplied source could not input a retail license during setup, and users installing Windows from a retail source could not input a manufacturer-supplied license) • That can be installed on and booted from systems with
GPT disks and
UEFI firmware == Removed features ==