Microsoft launches secured-core PC initiative to boost firmware security

By on
Microsoft launches secured-core PC initiative to boost firmware security

Microsoft is launching a new effort to better secure PCs against cyberattacks at the firmware level, the company said Monday.

The initiative is called Secured-core PCs and includes collaboration with both PC makers and chipmakers—with the ultimate aim of developing new devices that can better stop threats targeted at firmware and the operating system, Redmond, Wash.-based Microsoft said in a blog post.

"These devices, created in partnership with our PC manufacturing and silicon partners, meet a specific set of device requirements that apply the security best practices of isolation and minimal trust to the firmware layer, or the device core, that underpins the Windows operating system," Microsoft said. "These devices are designed specifically for industries like financial services, government and health care, and for workers that handle highly sensitive IP, customer or personal data."

Secured-core PCs bring together protection capabilities around identity, operating system, virtualisation, firmware and hardware, the company said.

"Unlike software-only security solutions, Secured-core PCs are designed to prevent these kinds of attacks rather than simply detecting them," Microsoft said.

The new Windows 10 devices developed to meet the Secured-core PC requirements will provide assurances around both operating system and firmware integrity, the company said.

"These requirements enable customers to boot securely, protect the device from firmware vulnerabilities, shield the operating system from attacks, prevent unauthorised access to devices and data, and ensure that identity and domain credentials are protected,” Microsoft said.

Along with Microsoft's Surface devices, the company mentioned Dell, Toshiba Dynabook, HP, Lenovo and Panasonic as PC makers involved with the Secured-core PC initiative.

Meanwhile, new silicon advances from AMD, Intel and Qualcomm will allow Windows 10 to implement the System Guard Secure Launch capability “as a key Secured-core PC device requirement to protect the boot process from firmware attacks," Microsoft said.

This article originally appeared at crn.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © 2018 The Channel Company, LLC. All rights reserved.
Tags:

Most Read Articles

You must be a registered member of CRN to post a comment.
| Register

Poll

What's your reaction to Microsoft shifting Azure prices into $US?
Upset that we'll pay more
We'll manage it, but wish prices were consistent
Not a problem - we already purchase in $US
We'll move to other clouds
View poll archive

Log In

Username / Email:
Password:
  |  Forgot your password?