Marc Stiegler, Alan H. Karp, Ka-Ping Yee, Tyler Close, Mark Samuel Miller. Polaris: virus-safe computing for Windows XP. Communications of the ACM, 49(9):83-88, 2006. [doi]
Polaris is a package for Windows XP that demonstrates that we can do better at dealing with viruses than has been done so far. Polaris allows users to configure most applications so that they launch with only the rights they need to do the job the user wants done. This simple step, enforcing the Principle of Least Authority (POLA), gives so much protection from viruses that there is no need to pop up security dialog boxes or ask users to accept digital certificates. Further, there is little danger in launching email attachments, using macros in documents, or allowing scripting while browsing the web. Polaris demonstrates that we can build systems that are more secure, more functional, and easier to use.