Microsoft Steps Up Security For Windows 10

Oct 23, 2014

Microsoft is trying to entice enterprise firms to adopt its new Windows 10 operating system by including a host of new security features, including two-factor authentication.

The technology giant claims that the traditional single-password method is too insecure and at the heart of system break-ins and data theft.

In a blog post, Microsoft's head of Windows enterprise program management Jim Alkove wrote that enhanced security is a key focus for the new OS, with security issues "central to many of the customer conversations I've had since we announced the availability of the Technical Preview."

"We believe this solution brings identity protection to a new level as it takes multi-factor security which today is limited to solutions such as smartcards and builds it right into the operating system and device itself, eliminating the need for additional hardware security peripherals," Alkove added.

Windows 10 users will be able to enrol devices as one of the two authentication factors, with the other being either a PIN or biometric input. Attackers would then need a user's physical device, along with the means to use the user's credential in order to access information. The credential could be either a key pair generated by Windows, or a certificate given to the device by a company's existing PKI system.

The user credentialing system will be supported by Microsoft's Azure Active Directory and consumer Microsoft accounts, enabling enterprises and consumers to move away from passwords more easily.

Windows 10 will also include features to protect any access tokens generated throughout the authentication process, and data loss prevention (DLT) technology will also offer protection to both personal and corporate data. IT managers will now be able to set up "app-allow and app-deny lists" giving organisations control over which apps are able to access corporate data.

Enterprise firms largely avoided Windows 8, so Microsoft will be hoping improved security features will entice some chief information officers back on board for Windows 10. The new OS is expected to launch by mid-2015, with its public testing programme already underway.


Author: Barclay Ballard
View the original article here.
Published under license from