Windows 10 – Security Enhancements

17. June 2015 Windows 0

On the 1st of June, Microsoft officially announced that Windows 10 will be publically available on 29th July 2015.

Windows 10 Insider Preview build 10130


Microsoft have touted Windows 10 as the ‘security and enterprise release’, so let’s take a look at some of the security enhancements that will be introduced in Windows 10.

######Multi Factor Authentication

Microsoft are focusing on enhancing security in Windows 10 by making it easier to move away from relying on a password as the single method of authentication. Multi-Factor Authentication support is built into the operating system and supports authentication methods such as entering a PIN or via using a biometric device such as a fingerprint reader.

######Device Guard
Device Guard is new to Windows 10 and ensures that only trusted applications can be executed. This reduces the risk of malware and zero day attacks and the process to determine whether an application is trusted is executed using hardware and virtualisation. This isolates the decision making process from the operating system reducing the surface attack space. Device Guard is designed to co-exist with existing antivirus and application control solutions.


Windows 10 Device Guard OEM hardware partners


######Windows Hello
Windows Hello introduces system support for biometric authentication in Windows 10 and allows for device access using fingerprint, iris or facial recognition without the need of a password. Windows Hello uses asymmetric key cryptography found in many of today’s security devices (such as smart card readers) and Intel’s RealSense 3D Camera uses infrared technology developed initially for Kinect to provide ‘enterprise grade’ facial recognition.

Existing devices with fingerprint readers can take advantage of Windows Hello and Intel’s new facial recognition technology will be included in future hardware which will ship later this year.


Windows Hello using infrared facial recognition


######Microsoft Passport

Microsoft Passport uses a PIN or Windows Hello to security authenticate the user to services on their behalf without the need of a password. This data is never stored in the device and will work with thousands of Azure AD integrated services at launch. Microsoft have joined the FIDO alliance to allow this technology to be used by other devices and applications.


Microsoft Passport providing authentication in conjunction with Windows Hello


These are just a few of the security enhancements coming to Windows 10. Stay tuned for more updates as we get closer to the final release.

**If you would like to speak to TD about Windows 10 or other Microsoft technology, [contact us here](**