Recently, Microsoft faced a big challenge when a problem with CrowdStrike software caused millions of Windows computers to crash. This was a wakeup call, and now Microsoft is making moves to make sure such an event doesn’t happen again. They want to keep the core part of the Windows operating system, called the kernel, more secure. Here’s why it’s important:
The kernel is like the brain of your computer. If bad software gets into the kernel, it can cause serious problems for everyone using Windows. To prevent this, Microsoft is working on ways to keep applications from getting too close to the kernel. They are developing new technologies that create safe spaces for running software that don’t need to mess with the kernel. One is called VBS enclaves and another is the Microsoft Azure Attestation service. These sound complex, but think of them as protected playpens where applications can run safely without risking the rest of the computer.
Even though experts understand why this is a good idea, it might not be easy. Security companies like CrowdStrike need to get close to the kernel to watch for and prevent attacks from hackers. When Microsoft tried this before with the Vista OS in 2006, security companies said it wasn’t fair. They argued that they needed that access to do their job well.
Now, with CrowdStrike’s incident as a lesson, Microsoft is bringing this discussion back. They know they have to find a middle ground, and they are determined to make the Windows environment stronger by teaming up with security experts.
While Microsoft has set its course, software companies that usually work closely with the kernel will need to adapt. They might have to work more closely with Microsoft to protect computers without that deep kernel access. This could mean that security built by Microsoft becomes more common, but it doesn’t have to be the only option.
Microsoft is committed to improving and feels confident they can make Windows more reliable by joining forces with the security community. You can learn more about their efforts in their blog post: www.csoonline.com/article/3478365/microsoft-shifts-focus-to-kernel-level-security-after-crowdstrike-incident.html.
Now, what does all this mean for you and your business? Let’s admit it, talking about kernels and enclaves can be a bit much if tech isn’t your thing. So, if you’re looking to strengthen your company’s tech resilience without getting tangled up in the details, consider reaching out for help. At Diversified Outlook Group, we navigate these complex tech landscapes so you don’t have to – ensuring your systems are secure and up-to-date. Faced with changes like Microsoft’s new approach, we stand ready to guide you through smoothly. Get in touch at support@diversifiedoutlookgroup.com and let’s keep your tech in tip-top shape.