Microsoft has explained how to increase the security of Windows

Microsoft has explained how to increase the security of Windows 11 – Pluton chips, automatic blocking of vulnerable drivers and more

This week, Microsoft hosted an event on the future of Windows 11. The software giant announced an updated file explorer, talked about integrating Windows 11 on-premises and Windows 365 into the cloud, and also unveiled new features for video conferencing and improved security. To ensure security, it is planned to use Microsoft Pluton chips, as well as tools to protect drivers, applications and users’ personal data.

    Image source: Windows Central

Image source: Windows Central

Microsoft plans to continue implementing the Pluton hardware solution, which integrates with processors and replaces the currently used Trusted Platform Module, which is separate from the processor. In addition, Pluton relies on several security features of Windows 11, such as firmware and identity protection as well as direct memory access and memory integrity protection. Curiously, some manufacturers such as Dell and Lenovo have moved away from using Pluton in favor of Intel’s vPro solution to secure their products.

It was also announced that the next version of Windows 11 will have Hypervisor-Protected Code Integrity enabled by default to protect code integrity, which will prevent the proliferation of WannaCry-like malware. There will also be a feature to automatically block drivers, vulnerabilities that attackers practically exploit. According to reports, Driver Lock will be activated on devices with Windows 11 SE and HVCI support.

Developers have announced a new feature called Smart App Control, thanks to which users are guaranteed to run only safe applications. This tool uses an AI algorithm that checks the processes launched by the application and evaluates their safety. The Smart App Control option is enabled by default on new Windows 11 devices.

Additionally, Windows 11 introduces a personal data encryption feature designed to protect information when the user is not authorized on the PC. Encrypted data can be accessed through Windows Hello for Business, by entering an encryption key, or by other means. This keeps user data protected, for example if the device is stolen.

A built-in anti-phishing protection for Windows 11 users was also announced, but details on how this tool works were not disclosed. The enterprise version includes a Credential Guard tool to protect against malware, as well as protection against information theft by the local security authority.



About the author

Robbie Elmers

Robbie Elmers is a staff writer for Tech News Space, covering software, applications and services.

Add Comment

Click here to post a comment