Microsoft to Enable 'Windows Baseline Security' With New Runtime Integrity Safeguards

Microsoft to Enable 'Windows Baseline Security' With New Runtime Integrity Safeguards

Briefly

"The enhancement, called Windows Baseline Security Mode, will ensure that only properly signed applications, drivers, and services can run, thus preventing tampering and unauthorized changes. For those cases where exceptions are needed, users and administrators will have the option to override the safeguards. "Developers can also check whether these protections are active and whether any exceptions have been granted - giving them insight and control over the conditions under which their apps run," Microsoft notes."

"The tech giant announced the improvement simultaneously with revealing that Secure Boot certificates will begin to expire in June, and that refreshed certificates will be rolled out to supported Windows releases. Secure Boot protects devices from the moment they are powered on, preventing the execution of unsigned software before Windows starts. To provide additional visibility into Windows' security decisions, Microsoft introduced User Transparency and Consent, which will notify users whenever an application attempts to access sensitive resources or to install additional software."