Share this article
Latest news
With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low
Copilot in Outlook will generate personalized themes for you to customize the app
Microsoft will raise the price of its 365 Suite to include AI capabilities
Death Stranding Director’s Cut is now Xbox X|S at a huge discount
Outlook will let users create custom account icons so they can tell their accounts apart easier
Microsoft Secured-core enabled PCs include HP, Dell, Lenovo and Surface Pro X
2 min. read
Published onOctober 21, 2019
published onOctober 21, 2019
Share this article
Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more
Aside from manufacturing custom silicon for its Surface Pro X and Surface Laptop AMD driven devices, the company is also pushing forward itscustom Secured-core PC architecturethis year as well.
Microsoft is stepping out beyond software solutions to partner with many of its PC OEMs to provide a triple layer of hardware, firmware, and software to protect devices typically used with government, financial services and healthcare sectors.
The essence of Secured-core PC lies in hardware-based security components. Trusted platform chips enable virtualization-based security that creates a secure hardware isolated kernel that prevents access to other critical parts of the hardware or software, all working together.
The entire process also makes use of Windows Defender System Guard through a series of System Integrity checks during boot up.
According to Microsoft,
This process and data are hardware-isolated away from Windows to help ensure that the measurement data is not subject to the type of tampering that could happen if the platform was compromised. From here, the measurements are used to determine the integrity of the device’s firmware, hardware configuration state, and Windows boot-related components.
This ensures protection from unsigned malware, one of the primary vectors for major attacks. Once Windows has started and is running securely and a user signs in with Windows Hello,
Credential Guard ensures that identity and domain credentials are isolated and protected in a virtualization-based secure kernel thereby blocking credential theft attack techniques and tools used in many targeted attacks.
Even malware running in the operating system with administrative privileges will not be able to extract authentication tokens.
To have a look at the hardware and partnering companies, Microsoft has a list of devices for sale with Secure-corehere, which include Dell, HP, Dynabook, Lenovo and even Microsoft’s upcoming Surface Pro X.
Kareem Anderson
Networking & Security Specialist
Kareem is a journalist from the bay area, now living in Florida. His passion for technology and content creation drives are unmatched, driving him to create well-researched articles and incredible YouTube videos.
He is always on the lookout for everything new about Microsoft, focusing on making easy-to-understand content and breaking down complex topics related to networking, Azure, cloud computing, and security.
User forum
0 messages
Sort by:LatestOldestMost Votes
Comment*
Name*
Email*
Commenting as.Not you?
Save information for future comments
Comment
Δ
Kareem Anderson
Networking & Security Specialist
He is a journalist from the bay area, now living in Florida. He breaks down complex topics related to networking, Azure, cloud computing, and security
