AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Tpm version 2.0 and secure boot4/6/2023 ![]() Microsoft says about Secure Boot in its announcement: “Since code running during the boot process has privileged access to system resources and performs many critical security initialization steps, malicious code that tries to hijack the boot process can have a very harmful impact. Early Launch Antimalware (ELAM) then protects Windows Server by starting malware protection before third-party drivers are initialized. Anti-malware software doesn’t run until later in the boot process, so Secure Boot protects against rootkits that modify code loaded before Windows starts. ![]() When Secure Boot is enabled, code loaded during the boot sequence, like the Windows Boot Manager and NT kernel, is checked against signatures in the firmware to ensure that it hasn’t been replaced or modified. Secure Boot is part of the Unified Extensible Firmware Interface (UEFI) framework, but it isn’t always enabled by default. Secure Boot is part of the UEFI framework, but it isn’t always enabled by default Requiring these technologies to be present and enabled by default will allow Microsoft to enhance and automate built-in Windows Server security features by default. ![]() ![]() Regardless of whether the operating system is running on bare metal, Hyper-V virtual machine guests, or on third-party hypervisors approved in the Server Virtualization Validation Program (SVVP). When new hardware is purchased with the next major release of Windows Server preinstalled, Secure Boot must be enabled by default. Microsoft will require that TPM 2.0 be installed and enabled by default. Microsoft says that the change is to give customers increased confidence when deploying Windows Server, maximizing platform integrity without changing the Request for Proposal (RFP) process. Existing hardware can be ‘Additional Qualification’ certified to show that it meets the new standards. Starting 1 st January 2021, TPM 2.0 and Secure Boot will be required rather than optional for new server hardware. Earlier this year, Microsoft announced that it will be raising the security standard for the next major release of Windows Server.
0 Comments
Read More
Leave a Reply. |