Jump to content
Facebook Twitter Youtube
GFX Designer Recruitment Campaign
Moderators Recruitment

[Software] New Windows 10 security feature protects PCs against data-stealing malware

#REDSTAR ♪ ♫

By #REDSTAR ♪ ♫,
in Software

 Share

Recommended Posts

#REDSTAR ♪ ♫ Newbie

#REDSTAR ♪ ♫

Posted
Posted (edited)

The new Windows 10 tool will also improve performance

 

G5rFRS54X6f3ZBqqcNXmsm-1024-80.jpg

 

Microsoft's new security feature for Windows 10 will make it more difficult for bad actors to infect your PC with malware. 

As ZDNet reports, the Kernal Data Protection (KDP) security feature prevents malware from modifying Windows 10 memory by giving developers a tool to designate parts of the OS kernel as read-only.

 

 

When converted to a read-only state, sensitive information housed in memory can't be accessed or modified. Protecting memory by making it read-only is valuable for the Windows kernel, inbox components, security products and third-party drivers, like anti-cheat and digital rights management software, Microsoft wrote in a blog post. 

 

"For example, we've seen attackers use signed but vulnerable drivers to attack policy data structures and install a malicious, unsigned driver," Microsoft's Base Kernel Team wrote. "KDP mitigates such attacks by ensuring that policy data structures cannot be tampered with."

 

Microsoft described a handful of secondary benefits generated by the Data Protection feature:  

 

Performance improvements – KDP lessens the burden on attestation components, which would no longer need to periodically verify data variables that have been write-protected


Reliability improvements – KDP makes it easier to diagnose memory corruption bugs that don’t necessarily represent security vulnerabilities
Providing an incentive for driver developers and vendors to improve compatibility with virtualization-based security, improving adoption of these technologies in the ecosystem

 

 

Microsoft suggested the KDP concept was created in response to attackers shifting their techniques toward data corruption now that security technology can ward off memory corruption attacks.  

 

"Attackers use data corruption techniques to target system security policy, escalate privileges, tamper with security attestation, modify “initialize once” data structures, among others," Microsoft notes.

Edited by Dr.Drako
Closed Topic / Complete 24 hours.
Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

WHO WE ARE?

CsBlackDevil Community [www.csblackdevil.com], a virtual world from May 1, 2012, which continues to grow in the gaming world. CSBD has over 70k members in continuous expansion, coming from different parts of the world.

 

 

Server Zone

Helpful Links

Important Links

VERSION 2.4.0

THEME BY TECTONICPX.COM
© 2022 CSBLACKDEVIL

Licensed to: CsBlackDevil.Com Powered by Invision Community


×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept