Microsoft. Photo: depositphotos
Microsoft has announced the development of new features for Windows 11 that will allow security vendors to work outside the core of the system. This solution aims to prevent situations similar to the CrowdStrike incident that crashed more than 8.5 million computers worldwide. This is reported by mezha.
The company held a special security summit attended by various security vendors, including CrowdStrike. The purpose of the event was to discuss potential solutions to avoid similar incidents in the future. Microsoft said the discussion included the requirements and key issues that need to be addressed to create a new security platform that will meet the needs of vendors.
David Weston, vice president of enterprise security and operating system security at Microsoft, said: “Our customers and partners have asked us to provide additional security capabilities outside of kernel mode. This will make it possible to create highly available security solutions that meet modern requirements.”
While Microsoft has not confirmed that it plans to restrict access to the kernel for security vendors, the summit discussed the performance issues and challenges of working outside of the kernel, as well as the need for tamper protection for security products.
There were earlier reports that Microsoft might consider blocking access to the kernel after the CrowdStrike incident. The company is currently in the early stages of developing a new platform that will allow security vendors to work outside of the Windows core.
