Ctrl Alt Delete On Nt

Windows NT requires that the user press CtrlAltDelete in order to log in. This is apparently a US DoD security requirement, the technical term for it is SecureAttentionKey?. It's to avoid spoof login boxes. It's relatively easy to spoof up a fake login dialog box, and capture user IDs and passwords, but user mode applications cannot intercept CtrlAltDelete. During normal operation, CtrlAltDelete preempts everything else (hopefully), and brings up a dialog with options allowing the user to lock the workstation, change their password or log out. Thus, by making sure that the user has to press CtrlAltDelete in order to get to the login dialog, spoof dialog boxes are prevented.

Of course, not many users know this, and might just type their details in without pressing CtrlAltDelete. Furthermore, Win2k relaxes this requirement - the CtrlAltDelete requirement can be turned off.


The first time I saw "Press Ctrl-Alt-Delete to Log In" I thought that someone crafty with dark sense of humor had gotten to our brand new test system. I called over a co-worker to share in the joke ... but the joke was on me.


I always assumed it was part of a fiendish plot. Here's the scenario:

Lowly Windows 3.1 user gets access to a fancy new Windows NT machine at work. It says "Press Ctrl-Alt-Delete to Log In". After the initial suspicion that it must be a sick joke, he tries it, and begins to get used to it. And he notices that C-A-D also does other useful things, like bringing up that dialog that lets you shut down, log out, lock the screen, or bring up the task monitor. Downright handy, actually.

And then he goes home, and accidentally reboots his home machine four times in one night. "Honey, I've got to buy Windows NT for our machine here at home. And it requires more resources ..."

The theory held up pretty well until Windows95 started doing sensible things with C-A-D, too. Darn. -- GlennVanderburg


EditText of this page (last edited November 21, 2014) or FindPage with title or text search