Microsoft’s new OS will work only with systems that have Trusted Platform Module (TPM) 2.0 in it. TPM is a security chip that safely maintains your storage keys and authentication protocols. So, the new OS will be compatible with 8th generation Intel chips and AMD Ryzen 2000 processors and higher. Do you have this CPU benchmark? Did the brand come up with this mandate to increase Windows 11 security? Learn more about it in this article at Dark Reading by Jai Vijayan.
Windows 11 Security Baseline
“This is not a security-centric floor,” confirms Microsoft enterprise and operating system security director David Weston. He adds further, “This is a general experience [CPU] floor to make sure that Windows 11 meets expectations.” Additionally, each Microsoft processor is compatible with Windows 11 and every Windows-certified system, 2015 onwards, has a TPM chip. So, you need not panic. With TPM 2.0, Microsoft is “setting a stronger security baseline for its new operating system,” explains Vijayan.
The TPM 2.0 chip has a hardware-root-of-trust that will store keys, login credentials, and other confidential data to make it harder for threat actors to get a hold on it. For Window 11 security, you will have Windows Hello to ensure ‘passwordless logins and a zero-trust feature’.
Even if your system is compromised, threat actors will not get access to the information stored in TPM 2.0. Additionally, you will have better performance once you meet upgraded hardware security obligations. The Control Flow Guard technology is used to address memory corruption in Microsoft devices. However, it slows down the system when it works on a software platform. Now with Intel and AMD backup, Microsoft shifted the technology directly into the CPU. As a result, it makes the Control Flow Guard technology a part of the hardware system and works much faster.
The Windows 11 security benchmark is aligned with Microsoft’s future roadmap of building secured-core PCs. These systems will have numerous use cases for sectors that heavily depend on infrastructures like financial and accounting services, government offices, and healthcare units. BitLocker encryption, Defender System Guard, and Windows Hello will be present by default in these PCs. Then, the hardware security benchmarks for these sectors will lessen to prevent cyber-attacks.
To view the original article in full, visit the following link: https://www.darkreading.com/endpoint/new-cpu-baseline-for-windows-11-will-ensure-better-security-microsoft-says/d/d-id/1341412