The Windows Club

Secure Boot, Trusted Boot, Measured Boot in Windows 10/8

Security! Well, this is a major concern for almost everyone it seems, these days. When it comes to operating systems we know better how quickly they get attacked by virus and malware. And more popular the operating system, the more the people who want to attack it.

Secure Boot, Trusted Boot, Measured Boot

Microsoft has made some bold claims regarding security and data management on Windows 8 and so I  decided to study them a bit, and I must say that I am impressed. First let us see what is understood by Secure Boot, Trusted Boot and Measured Boot in Windows 10/8.

Using the Measured Boot, Windows can further validate the boot process beyond Secure Boot. The start-up processes are now signed, protected, and measured. They are then stored in the TPM chip to prevent rootkit or malware infection. For TPM-based systems, Windows 8 will perform a comprehensive chain of measurements during the boot process, called measured boot, which can be used to validate the boot process to prevent rootkits and other malware.

Windows has taken an innovative approach in addressing the issue of insecure boot which prevailed for a long time. Power attackers and virus developers prefer customizing virus and designing them to attack the PC right at the time of boot. It is probably because boot time is when security is at its weakest and antivirus and firewall do not guard the system.

Let’s take a few minutes and go over some common scenarios we face today:

It is a universal temptation to get things done in a matter of seconds. Well, Microsoft has guaranteed it with a fast boot time of around eight seconds and with much more security as well, this time.

Let’s check out what Windows does with its Measured Boot:

I can see that Windows 8/10 has the power and ability to protect you PC from malware and malicious programs right from the boot-time.

You can read more about this on TechNet.

Check if your PC supports UEFI or BIOS. Read this if your Secure Boot isn’t configured correctly in Windows and this post to learn How to Secure the Windows 10 Boot Process.