HOME

TheInfoList



Click Here for Items Related To - Local Security Authority Subsystem Service
OR:
Local Security Authority Subsystem Service on:   [Wikipedia]   [Google]   [Amazon]

Local Security Authority Subsystem Service (LSASS) is a
process A process is a series or set of activities that interact to produce a result; it may occur once-only or be recurrent or periodic. Things called a process include: Business and management * Business process, activities that produce a specific s ...
in
Microsoft Windows Windows is a Product lining, product line of Proprietary software, proprietary graphical user interface, graphical operating systems developed and marketed by Microsoft. It is grouped into families and subfamilies that cater to particular sec ...
operating system An operating system (OS) is system software that manages computer hardware and software resources, and provides common daemon (computing), services for computer programs. Time-sharing operating systems scheduler (computing), schedule tasks for ...
s that is responsible for enforcing the security policy on the system. It verifies users logging on to a Windows computer or server, handles password changes, and creates access tokens. It also writes to the Windows Security Log. Forcible termination of will result in the system losing access to any account, including NT AUTHORITY, prompting a restart of the machine. Because, is a crucial system file, its name is often faked by malware. The file used by Windows is located in the directory , and the description of the file is Local Security Authority Process. If it is running from any other location, that is most likely a
virus A virus is a submicroscopic infectious agent that replicates only inside the living Cell (biology), cells of an organism. Viruses infect all life forms, from animals and plants to microorganisms, including bacteria and archaea. Viruses are ...
,
spyware Spyware (a portmanteau for spying software) is any malware that aims to gather information about a person or organization and send it to another entity in a way that harms the user by violating their privacy, endangering their device's securit ...
, trojan or
worm Worms are many different distantly related bilateria, bilateral animals that typically have a long cylindrical tube-like body, no limb (anatomy), limbs, and usually no eyes. Worms vary in size from microscopic to over in length for marine ...
. Due to the way some systems display fonts, malicious developers may name the file something like (capital "i" instead of a lowercase "L") in efforts to trick users into installing or executing a malicious file instead of the trusted system file. The Sasser worm spreads by exploiting a buffer overflow in the LSASS on
Windows XP Windows XP is a major release of Microsoft's Windows NT operating system. It was released to manufacturing on August 24, 2001, and later to retail on October 25, 2001. It is a direct successor to Windows 2000 for high-end and business users a ...
and
Windows 2000 Windows 2000 is a major release of the Windows NT operating system developed by Microsoft, targeting the server and business markets. It is the direct successor to Windows NT 4.0, and was Software release life cycle#Release to manufacturing (RT ...
operating systems.


References


External links


Security Subsystem ArchitectureLSA AuthenticationMS identity management
{{Windows Components Microsoft Windows security technology Windows NT architecture Access control software Windows components