Microsoft today detailed the security and identity protection enhancements they are bringing in Windows 10. In Windows 10, Microsoft is trying to address modern security threats with advancements to strengthen identity protection and access control, information protection, and threat resistance.
One such advancement is the work we have done to create user identities for accessing devices, apps and sites that improve resistance to breach, theft or phishing. This approach is important because it takes the concept of multi-factor solutions such as smartcards or token-based system and builds it right into the operating system, in turn also eliminating the need for extra security hardware peripherals.
We’ve also made progress in helping companies protect their business data. While BitLocker helps protects data as it resides on a device, once the data leaves the device it’s no longer protected. With Windows 10 we are able to provide an additional layer of protection using containers and data separation at the application and file level – enabling protection that follows the data wherever it goes. Whether the data moves from a tablet or PC to a USB drive, email or the cloud – it maintains the same level of protection. This solution will stand out because of its ease of use and ability to help protect data right at the file level. Users won’t need to change behavior, use special apps, or move to a separate, locked-down environment to keep corporate data secure.
Windows 10 also provides organizations with the ability to lock down devices, enabling additional threat and malware resistance. Organizations will have the flexibility to choose what apps are trustworthy – just apps that are signed by themselves, specially signed apps from ISVs, apps from the Windows Store, or all of the above. Unlike Windows Phone these apps can also include desktop (Win32) apps – meaning that anything that can run on the Windows desktop can also run on these devices. Ultimately, this lockdown capability in Windows 10 provides businesses with an effective tool in the fight against modern threats, and with it comes with the flexibility to make it work within most environments.
Read more at Windows team blog.