‫ Windows 10 - Privacy and Security Features at a Glance (Part 3)

ID: IRCAR201503251
Date: 2015-03-28
In this article we take a more detailed looked at some of the security features that are going to be released in the new version of Windows 10.
Securing Devices
Mobile devices are being made more secure. Virtual Private Network (VPN) associated risks are being addressed. Better VPN control options are afforded to the administrator, restriction can be put in place for applications, thus regulating the access applications have to the VPN. Access to the VPN via ports and IP addresses can also be controlled and restricted as seen fit.
The signing service for applications is aimed at reducing risk from malware by limiting application installation to chosen trusted apps. This will allow for Microsoft to warn users of unsigned code and also revoke certificates from code writers that have malicious or potentially malicious code.
The lock-down feature allows organisations to restrict app access to specific devices, reducing the threat risk threshold. Policies can be created to enforce the necessary rules.
The Mobile Device Management (MDM) feature, should offer greater support for organisations. MDM is destined to work across traditional desktop and laptops as well. Microsoft’s consolidated approach to managing the mobility platforms is surely going to be a winner as this is something that was lacking in the past.
Securing Data and Data Privacy
Data Loss Prevention (DLP) for corporates is also a useful feature. Data is protected through corporate policy and data can be categorised as personal or corporate and also restricted with regards to the data allowed to be copied or not.
This feature will assist in the prevention of data disclosure within and outside of organisations, securing the data and keeping it private. The ability to categorise data is a great tool for BYOD within organisations.
Automatic encryption of data, via the DLP solution, includes encryption of apps, data, email and website content. The automatic encryption will happen as the data arrives on the device from network locations within the organisation. Policies can be applied to automatically encrypt certain data. At the moment this is Microsoft platform specific, but I am sure with the announcements of .net being able to be used across platforms this will change quickly.
Interoperability across devices will ensure data is secured across multiple platforms.
VPN associated risks have been addressed. Restrictions can put in place for applications via policy, thus regulating the access applications have to the VPN.
We should now also start seeing the extension of what was previously known as direct access, essentially each application will have the capability to independently create their own SSL type VPN back to where the centralised resource is stored. This will occur on demand and when the application has had the authentication token supplied by the OS, the application itself securely connects to the remote service.
Windows 10 will also support more biometric devices than ever before, this lean towards biometric devices is logical as biometric devices are now much more mature than before and have the capability to be found in a multitude of tablets, phones and PCs. The devices are now quick and accurate and this way of computing is now becoming ubiquitous.
Azure will also now start integrating into AD, with the arrival of this feature both Hybrid clouds and full hosted platforms are possible and easier to adopt so this will accelerate the migration to Microsoft services. The authentication systems have yet to be finalised but this is a big move by Microsoft that will have a major influence on the ability to operate securely in the cloud. It’s not yet clear if this model will allow for advance federation but it’s an exciting prospect none the less.
Finally it looks like Windows 10 is going to address most of the security concerns that were down to the operating systems deficiencies. Although these features will improve the operating system and enhance the functionality of the OS, it’s not clear what the user experience will be.
We are sure that there are lots of conversations taking place in Redmond that will ensure that the prioritised features will be released vs. the nice to haves. At this moment we think it’s clear that third part security solutions are still required but this is a big step forward in the right direction.

Related Posts:


بدون نظر
شما برای نظر دادن باید وارد شوید


تاریخ ایجاد: 15 فروردین 1394



امتیاز شما
تعداد امتیازها:0