"Starting with the Baseline Security Mode, the plan is for Windows to operate with runtime integrity safeguards enabled by default. This means only properly signed apps, services, and drivers. However, users and administrators can still override the safeguards for that one weird legacy app, and app developers can check if the protections are active and if any exceptions have been granted."
"For User Transparency and Consent, it looks like there could be a lot more nagging in store. The current User Account Control (UAC) prompt often triggers little more than an eye roll and a swift click. But Microsoft's new approach will be more granular, asking for explicit consent when apps access sensitive resources or try to install other software. "Just like on your smartphone," said Microsoft, although hopefully without all the restrictions that come with a walled garden of vendors like Apple has."
Windows will introduce Baseline Security Mode and User Transparency and Consent. Baseline Security Mode will enable runtime integrity safeguards by default so only properly signed apps, services, and drivers are allowed. Users and administrators will retain the ability to override safeguards for legacy apps. App developers will be able to check whether protections are active and whether exceptions exist. User Transparency and Consent will require explicit consent when apps access sensitive resources or attempt software installation, prompting users more often. Prompts will be described as clear and actionable, and users will be able to review and change choices later. Administrators may need to prepare for increased support.
#windows-security #baseline-security-mode #user-transparency-and-consent #runtime-integrity #app-permission-prompts
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]