Today, we find that an increasing number of people are storing their work files, to a personal email or a cloud account, requiring a username and password for login. This simple login makes your personal cloud accounts susceptible to hacking at times if adequate measures are not in place to keep them safe. Cyber-attacks on businesses are wide-reaching and attacks are high-profile and often successful in execution. With Windows 10, Microsoft has actively tried to address modern security threats with advancements to strengthen identity protection, access control, and more.
Let us have a look at some features and improvements.
Identity Protection and Access Control
Windows 10 protects user credentials when breaches in the data center are reported. Once enrolled, users will benefit from Microsoft’s Multi-factor security strategy without the use of any hardware peripheral devices. For instance, you can enroll a device like a smartphone or a tablet as one of your factors. Now, as long as your smartphone or tablet is nearby, you can sign on to other Windows PCs without having to go through cumbersome two-factor authentication sign-in. In short, your phone will behave in a manner similar to that of a smartcard, offering two-factor authentication for both local sign-in and remote access, a step to help you migrate away from using passwords.
The second factor will be a PIN or biometric, such as a fingerprint. Any attacker attempting to steal information would require a user’s physical device – in addition to the means to use the user’s credential – which would require access to the user’s PIN or biometric information.
With Windows 10, Microsoft has also focused on information protection. BitLocker is a capability that that helps users protect data while it resides on the device, but as soon as the data leaves the device, it’s no longer protected and remains vulnerable. An individual or an organization could leak corporate data, accidentally. Windows 10 offers a solution to this problem too.
Data Loss Prevention (DLP) is a technology developed to separate corporate data from personal data and protect it using containment. Under this system, corporate apps, data, email, website content and other sensitive information will be automatically encrypted in Windows 10 (including Windows Phone), and that encryption will occur as it arrives on the device from corporate network locations.
Windows 10 enables new levels of protection with Threat Resistance. You can lock down your devices to avoid installing malware, inadvertently on to your devices. The threat is mitigated by only allowing trusted apps (apps that are signed using a Microsoft-provided signing service, to be run on specially configured devices). Organizations will be supplied with the flexibility to choose which apps are trustworthy and should be installed. To be precise, the Lock-Down capability in Windows 10 will offer businesses an effective tool to fight modern menaces.
You can read more about this at TheWindowsBlog.