At the RSA Conference in San Francisco, Scott Charney, Corporate Vice President of Trustworthy Computing, spoke about the security innovations that give Microsoft cloud customers’ more transparency and control over their data. He also detailed the new security related improvements in Windows 10—Device Guard, Microsoft Passport and Windows Hello. We already know about Microsoft Passport and Windows Hello. But what is Device Guard?
Device Guard is the previously unnamed feature we blogged about that gives organizations the ability to lock down devices in a way that provides advanced malware protection against new and unknown malware variants as well as Advanced Persistent Threats (APT’s). It provides better security against malware and zero days for Windows 10 by blocking anything other than trusted apps—which are apps that are signed by specific software vendors, the Windows Store, or even your own organization. You’re in control of what sources Device Guard considers trustworthy and it comes with tools that can make it easy to sign Universal or even Win32 apps that may not have been originally signed by the software vendor.
Device Guard can use hardware technology and virtualization to isolate that decision making function from the rest of the OS, which helps provide protection from attackers or malware that have managed to gain full system privilege. It offers significant advantage over traditional anti-virus and app control technologies like AppLocker, Bit9, and others which are subject to tampering by an administrator or malware. OEMs listed above are endorsing the use of Device Guard on their Windows 8 certified devices.
Read more about it here.