AFAIK there are fairly standard categories of serious spyware threats to the user - keyloggers, packet inspectors/loggers, screenshot takers, spyware browser plugins and possibly some others. Well, so let’s say Microsoft really cares about protecting the user from all that. Hypothetically
Could they introduce a bunch of policies into the operating system that would have made all this stuff either non-functional or easy to detect? E.g. let’s say in order to do screenshot we make it, by default, necessary for the user to jump through several hoops to enable the functionality temporarily and the time that each screenshot was taken gets logged for later review. To combat keyloggers let’s say registering to monitor all keyboard activity is made very hard, while keeping it relatively easy to register a hook to track a hotkey with a CTRL or ALT key involved. With paket inspectors maybe make it hard to register for such activity so that basically only firewalls could register for it after jumping through many hoops.
Well, so I was wondering, what is it about Windows that makes my above suggestions apparently not really workable? Are there fundamental reasons why none of this would work? Or are these valid approaches that are slowly seeping in into Windows whenever Microsoft isn’t too busy messing up user interface into a more Vista shape ?