In this video, Sharon outlines some security features included in Windows 10, including, Windows Trusted Boot, Windows Hello and Windows Information Protection.
- [Narrator] Let's take a few minutes to review some of the Windows 10 security features and we'll start of with Windows Trusted Boot. This technology will protect the system from malware from the moment you power on the system to when the anti-malware solution is loaded. It will prevent malware rootkits from being loaded during this critical time. Windows Trusted Boot will also ensure system components have not been compromised prior to start up, and if they have, they will not be loaded.
And Windows trusted Boot will attempt to repair any corruption and then start normally if possible. Windows Defender Advanced Threat Protection or ATP will detect, explore, and react to threats proactively. It could mitigate a problem even before you or your users realize that there is one. Next we have BitLocker which has been around for some time. This service will encrypt the hard drive and the operating system will not launch until a pin is provided and this will protect against lost or stolen laptops from being accessed.
Next we have Conditional Access which is used on devices that are brought into the organization otherwise known as BYOD or Bring Your Own Device. Conditional access will ensure that a device is compliant with company policies. For example, we may not allow devices that have been jailbroken or do not meet the minimum OS to access our corporate data. Next we have Device Guard. Back in the day, all of our apps were trusted unless they were flagged by a security system such as an antivirus solution.
When we use Device Guard, only authorized apps are trusted by the operating system. This will prevent rogue app from running in the environment. Credential Guard protects against credential attacks and threat. Using virtualize-based security. Credentials and secrets are isolated using Isolated User Mode or IUM. And only privileged system software can access the secret. This will prevent pass the hash or pass the ticket attacks.
Windows Hello uses biometrics for additional authentication such as fingerprint or facial recognition again protecting from unauthorized users accessing our data. And finally, we have Windows Information Protection and this will protect against accidental data leaks such as a user posting confidential information to social media, maybe sending it in an email, or sharing it online using a service such as Dropbox or Drive. Windows Information Protection will also keep our work and personal data separate.
Windows 10 is Microsoft's safest and most secure operating system to date. We have only touched on the few of the features of how to keep your device, operating system, and data secure. I would highly encourage you to refer to the other courses in the library or the Microsoft website for more information.