Windows 11 began to be released for supported PCs earlier this month. Microsoft has now explained some of the security features for Windows 11, including advanced hardware security, privacy restrictions, and application isolation and controls.
Security requirements attracted criticism because it marked the end of Windows 11 support for many older machines. Regardless, Microsoft is committed to security at the core of all machines running Windows 11.
Improved hardware level system security
Windows 11’s security starts at the hardware level, emphasized by the company’s recommended TPM 2.0 requirement to be eligible to install the update. Using chip-level security, Microsoft claims that “Windows 11 stores sensitive data behind additional security barriers and separates it from the operating system.”
This means that important information such as encryption keys and user credentials are stored securely and protected from unauthorized access and access.
Strong application security and privacy restrictions
Microsoft Windows 11 includes several layers of application security to protect “critical data and encryption integrity”.
“Application Isolation and Restrictions, Code Integrity, Privacy Restrictions, and Minimal Privacy Policies help developers develop security and privacy,” says Microsoft. Integrated security protects Windows 11 from violations and malware, while keeping user data private and therefore secure. This integrated security gives IT administrators more control over multiple machines.
Support for password-free authentication
Windows 11 goes hand in hand with Microsoft’s vision of a password-free future. Eliminating the need for passwords when signing in to Windows 11 and other security layers, instead of providing alternative copy authentication methods ensures that users and their data are secure.
Connects with cloud services
“Windows 11 implements security policies, regulations, procedures and technologies that work together to protect your devices, data, applications and identities from anywhere,” Microsoft wrote in a post. The company also provides cloud services for “identification, storage and access management” in addition to other tools.
The company also claims that users can enable their own compliance and conditional access through advanced device management (MDM) services such as Microsoft Intone, which works with the company’s Azure Active directory to control access to applications and data through the cloud.