Security & Identity Protection improvements in Windows 10

Today, we find that an increasingly number of people are storing their work files, to a personal email or a cloud account, requiring a username and password for login. This simple login makes your personal cloud accounts susceptible to hacking at times, if adequate measures are not in place to keep them safe. Cyber-attacks on businesses are wide-reaching and attacks are high-profile and often successful in execution. With Windows 10, Microsoft has actively tried to address modern security threats with advancements to strengthen identity protection, access control and more.


Let us have a look at some features and improvements.

Identity Protection and Access Control

Windows 10 protects user credentials when breaches in the data center are reported. Once enrolled, users will benefit from Microsoft’s Multi-factor security strategy without the use of any hardware peripheral devices. For instance, you can enroll a device like a smartphone or a tablet as one of your factors. Now, as long as your smartphone or tablet is nearby, you can sign on other Windows PCs without having to go through cumbersome two-factor authentication sign-in. In short, your phone will behave in a manner similar to that of a smartcard, offering two-factor authentication for both local sign-in and remote access, a step to help you migrate away from using passwords.

The second factor will be a PIN or biometric, such as fingerprint. Any attacker attempting to steal information would require a user’s physical device – in addition to the means to use the user’s credential – which would require access to the users PIN or biometric information.

Information protection

With Windows 10, Microsoft has also focused on information protection. BitLocker is a capability that that helps users protect data while it resides on the device, but as soon as the data leaves device, it’s no longer protected and remains vulnerable. An individual or an organization could leak corporate data, accidentally. Windows 10 offers a solution to this problem too.

Data Loss Prevention (DLP) is a technology developed to separate corporate data from personal data and protect it using containment. Under this system, corporate apps, data, email, website content and other sensitive information will be automatically encrypted in Windows 10 (including Windows Phone), and that encryption will occur as it arrives on the device from corporate network locations.

Threat Resistance

Windows 10 enables new levels of protection with Threat Resistance. You can lock down your devices to avoid installing malware, inadvertently on to your devices. The threat is mitigated by only allowing trusted apps (apps that are signed using a Microsoft provided signing service, to be run on specially configured devices). Organizations will be supplied with the flexibility to choose which apps are trustworthy and should be installed. To be precise, the Lock-Down capability in Windows 10 will offer the businesses with an effective tool to fight modern menaces.

You an read more about this at TheWindowsBlog.

Posted by on , in Category Security with Tags
Anand Khanse is the Admin of, a 10-year Microsoft MVP Awardee in Windows (2006-16) & a Windows Insider MVP. Please read the entire post & the comments first, create a System Restore Point before making any changes to your system & be careful about any 3rd-party offers while installing freeware.

Leave a Reply

Your email address will not be published. Required fields are marked *

6 + 3 =