Connect with us

Hi, what are you looking for?

Microsoft advocates for Windows updates and increased resilience following CrowdStrike outage
Microsoft advocates for Windows updates and increased resilience following CrowdStrike outage

Tech

Microsoft advocates for Windows updates and increased resilience following CrowdStrike outage

Microsoft continues to assist CrowdStrike in addressing the fallout from a problematic update that caused 8.5 million PCs to go offline a week ago. The tech giant is now advocating for changes to Windows to enhance its resilience and suggests that security vendors like CrowdStrike should limit kernel access.

MIGHT BE INTERESTED  What is CrowdStrike and how did it occur?

CrowdStrike’s recent issues stemmed from a faulty update in their Falcon software, which operates at the kernel level—the core part of an operating system with unrestricted access to system memory and hardware. This level of access means that any error can result in significant system failures, like the Blue Screen of Death.

CrowdStrike’s software uses a specialized driver to detect threats at a lower system level. Microsoft attempted to restrict kernel access by third parties back in 2006 with Windows Vista but faced opposition from cybersecurity vendors and EU regulators. In contrast, Apple successfully restricted kernel access in macOS in 2020.

Microsoft appears ready to revisit the idea of limiting kernel access within Windows. John Cable, vice president of program management for Windows servicing and delivery, emphasized in a blog post titled “The Path Forward” the need for Windows to focus on end-to-end resilience and called for enhanced cooperation with security partners.

Advertisement. Scroll to continue reading.

While specific improvements to Windows were not detailed, Cable hinted at possible directions, such as the new VBS enclaves feature and Azure Attestation service, which employ Zero Trust approaches and do not require kernel mode drivers.

Cable stated that Microsoft would continue to develop capabilities that encourage secure development practices without relying on kernel access, aiming to strengthen the Windows ecosystem’s resilience through collaboration with the security community.

This initiative might spark further discussions about Windows kernel access. Despite regulatory constraints preventing Microsoft from locking down its OS as Apple did, there are concerns from industry leaders like Cloudflare CEO Matthew Prince about the impact of increased restrictions. Microsoft will need to balance the needs of security vendors if it intends to pursue significant changes.

Advertisement. Scroll to continue reading.
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Advertisement
Advertisement
under ads
Advertisement

You May Also Like

News

Child Benefit is a monthly payment provided to parents or guardians of children under 16 years old. This benefit extends until the child turns...

News

The National Communications Authority (NCA) has permitted Space X Starlink GH LTD, the operator of Starlink Satellite Broadband, to operate satellite broadband services in...

Entertainment

Young Bull, a Ghanaian young rapper Thorsten Owusu Gyimah, popularly known as Yaw Tog is on heat as he release another street anthem. The...

International News

The potential impact of a whistleblower’s allegations on Elon Musk’s proposed $44 billion acquisition of the social media platform is the subject of a...

Advertisement