Microsoft recently announced ambitious plans to make Windows more resilient to security incidents.
It all started from the situation a few months ago, when an update from CrowdStrike caused more than 8 million Windows computers and servers around the world to shut down for more than a day. These displayed the dreaded “Blue Screen of Death”.
What is the company’s plan
Microsoft wants to change the way security programs work in Windows. Instead of having full access to the core of the system (called the kernel), these programs would work in a more secure but equally efficient way.
Why the new measures are important
If a security program fails, it will no longer affect the entire system. Both in hand, security will be improved, because reducing access to the kernel means less chance for malicious programs to do big damage.
In addition, the user experience will be much better: fewer “blue screens of death” and crashed computers.
SIDE
At a recent Windows Security Summit, Microsoft discussed with partners such as CrowdStrike, Broadcom and Trend Micro the need to move security functions outside the kernel.
Many security companies seem open to this idea. Even CrowdStrike said it appreciates Microsoft’s efforts.
However, there are also voices expressing concern that Microsoft might retain privileged access to the kernel for its own security solutions.
This issue was raised by Cloudflare CEO Matthew Prince, who pointed out that such a move could create a less competitive market.
Challenges outside the kernel
Moving to security solutions that operate outside of the kernel is not without its challenges, as they must be just as effective without affecting system performance.
Moreover, it will be necessary to develop new methods of protection against unauthorized access.
What’s next?
Microsoft won’t make changes overnight, because it needs to work with security companies to find the best solution.
In the short term, users won’t notice much. But in the future, we may have a Windows that is safer, more stable, and less prone to security issues.
Source: The Verge
Source: www.go4it.ro
