.

Windows 8 Takes Security to the Next Level

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Sun Sep 02, 2012 7:44 pm

Windows 8 Takes Security to the Next Level

More interesting reading from Mr. Grimes of InfoWorld:


Windows 8 is meeting mixed reviews, to put it mildly -- just ask InfoWorld's Woody Leonhard or J. Peter Bruzzese. Most of the negative reviews I've read talk about the frustrations of Metro on the desktop and the lack of a Start button.

From a security perspective, that bad press is too bad, because security improvements in Windows 8 make it one of the most secure operating systems on the planet. That might sound like hyperbole -- until you consider all the new stuff that's been rolled in. Check them out below. (Note: I am a full-tiime employee of Microsoft.)

Secure Boot

Windows 8's Secure Boot feature builds on the open standard UEFI (Unified Extensible Firmware Interface) specification to make Windows incredibly resistant to malicious modification from preboot to full OS booting, preventing firmware attacks. The risk of firmware-attacking malware is rising, if you believe the National Institute of Standards and Technologies, the military, and many Fortune 100 CSOs.

Prior to UEFI and Secure Boot, you would be notified about malicious firmware and OS boot code modification in Windows only if you enabled BitLocker Drive Encryption with the Platform Configuration Registers (PCRs) configured (the default). However, enabling drive encryption to get a boot integrity solution was considered overkill by many.

UEFI and Windows Secure Boot only allow code signed by pre-approved digital certificates to run during the firmware and OS boot process. If anything unsigned tries to modify the boot process (think rootkit), the UEFI-based firmware will undo the change, as does the OS. After receiving a healthy and validated handoff from the firmware, it continues to ensure that only pre-approved, digitally signed code can be run.

Although other OSes can and will use UEFI secure boot, Windows 8 and Windows Server 2012 are the only OSes in which it will be enabled by default. Other than Google's Chromium OS, few other popular OSes have plans to implement UEFI-like protections or are still arguing about how to pull it off and when to implement.

Early-launch antimalware

Windows 8 extends its safe boot protection by ensuring that pre-approved antimalware software gets loaded before malware can take control. Previously, malware could "walk the interrupt vector chain" and get in front of the OS or antimalware software. Once that happened, it wasn't Microsoft's or your OS anymore. Now pre-approved antimalware software always gets loaded ahead of the malicious programs, which improves the chances of detection and removal.

SmartScreen

SmartScreen is the feature that has made Internet Explorer one of the safest browsers you can run. It has prevented millions of IE users from being infected each day. It does so using a combination of application reputation and website reputation and by looking for malicious behaviors.



For entire article & links:
http://www.infoworld.com/d/security/win ... vel-200554

Don
CISSP, MCSE, CSTA, Security+ SME
<<

cyber.spirit

User avatar

Sr. Member
Sr. Member

Posts: 356

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Tue Sep 04, 2012 3:05 am

Re: Windows 8 Takes Security to the Next Level

im studying mcitp and i love microsoft what great news thanx
ICS Academy Network Security Certified
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 569

Joined: Sat Apr 17, 2010 12:12 pm

Post Tue Sep 04, 2012 11:47 am

Re: Windows 8 Takes Security to the Next Level

I'm not convinced. It sounds like this secure boot will cripple certain implementations. When I hear "it continues to ensure that only pre-approved, digitally signed code can be run." I am reminded of when I had to modify windows to allow an unsigned driver to run so I could use a device to watch tv on my pc. I am skeptical of how this may effect dual boot systems, as well as cracking passwords on business computers (bitlocker is a pain in the neck...)

early launch, im sure hackers will find a way around it. And i've never found smart screen filter or i.e.'s download scanning to be effective, however i dont remember seeing reviews of either of these features, anyone seen one?
sectestanalysis.blogspot.com/‎
<<

Jamie.R

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Mon Aug 06, 2012 9:57 am

Location: UK

Post Tue Sep 04, 2012 3:54 pm

Re: Windows 8 Takes Security to the Next Level

I have had little play with Windows 8 at the moment I am not a big Fan. I think so many people have gotten used to Windows 7 that this will be a bit like xp and be around for years as many companies have started to implement it.
| OSWP | eCPPT Silver and Gold | eWPT |

I'm an InterN0T'er
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Wed Sep 05, 2012 4:16 pm

Re: Windows 8 Takes Security to the Next Level

SephStorm wrote:I'm not convinced. It sounds like this secure boot will cripple certain implementations. When I hear "it continues to ensure that only pre-approved, digitally signed code can be run."

...

I am skeptical of how this may effect dual boot systems, as well as cracking passwords on business computers (bitlocker is a pain in the neck...)


http://blog.canonical.com/2012/06/22/an ... cure-boot/
The day you stop learning is the day you start becoming obsolete.
<<

Eleven

User avatar

Full Member
Full Member

Posts: 121

Joined: Thu Nov 10, 2011 6:47 pm

Post Wed Sep 05, 2012 4:37 pm

Re: Windows 8 Takes Security to the Next Level

Since kernel mode code signing has already been bypassed in Windows, I don't see why can't Secure Boot be bypassed.

http://www.virusbtn.com/conference/vb20 ... inute1.xml
<<

sternone

Full Member
Full Member

Posts: 129

Joined: Tue Aug 07, 2012 1:31 am

Post Wed Sep 12, 2012 8:17 pm

Re: Windows 8 Takes Security to the Next Level

Bah, most business still run windows XP anyway  ;D
Try harder....hmpf!!

Return to OS

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software