Can someone explain what api call I need to make to create my own Protected Processes? Or it not done that way, rather a certain digital signature on the binary on disk causes it to run that way? Thanks.

OK, apparently it's this flag CREATE_PROTECTED_PROCESS in createprocess and a special signature. Lucky for home users they are all administrators and can just do this http://wj32.wordpress.com/2009/01/25/howto-protect-and-unprotect-vistas-drm-protected-processes/ to circumvent it. Who comes up with this stuff? I mean really? http://msdn.microsoft.com/en-us/library/ms684863(v=VS.85).aspx The process is to be run as a protected process. The system restricts access to protected processes and the threads of protected processes. For more information on how processes can interact with protected processes, see Process Security and Access Rights. To activate a protected process, the binary must have a special signature. This signature is provided by Microsoft but not currently available for non-Microsoft binaries. There are currently four protected processes: media foundation, audio engine, Windows error reporting, and system. Components that load into these binaries must also be signed. Multimedia companies can leverage the first two protected processes. For more information, see Overview of the Protected Media Path. Windows Server 2003 and Windows XP/2000: This value is not supported.

Hi, Your question seems to be more related to development. I suggest that you post to the MSDN forum for assistance: MSDN forum http://social.msdn.microsoft.com/Forums/en-US/categories/ Thanks.This posting is provided "AS IS" with no warranties, and confers no rights. Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.