Kernel Data Protection: New data security feature on Windows 10 is coming soon

Microsoft is said to be preparing to officially launch a powerful new security feature for Windows 10, a tool that can make a major change to the overall security status of this operating system.

In fact, the feature has been implemented in beta in the latest Windows 10 Insider Build build to get input from the advanced user community. It is called Kernel Data Protection and is designed to provide a stronger shield for Windows 10 users against data-related security risks.

Earlier, on July 8, the Microsoft Kernel Security Team (Security Kernel Core Team) introduced what they called 'a new platform security technology to prevent data breaches in Kernel level '- Kernel Data Protection (KDP). This feature works by allowing developers and system administrators to set advanced security status for certain components of the Windows kernel and read-only drivers. ), via a set of application programming interfaces (APIs) and thus, prevents hackers from interfering and modifying protected memory.

Basically, KDP will help prevent threat agents from relying on data corruption methods to bridge the spread of more intensive, larger-scale attacks, such as escalating system privileges, installing drivers and malware .

Do you need KDP? 

KDP was first mentioned by Microsoft when Secured-core PCs were released. According to Microsoft, this is a 'combination of identification, virtualization, operating system, hardware and firmware security' - a virtualization-based security aspect (VBS) related to KDP. The arrival of the KDP APIs means that Windows kernel memories can be labeled 'read-only mode' and isolated from the rest of the operating system by VBS.

The good news is that even if you don't use Secured-core PC, both KDP and VBS will still work on Windows 10 computers that support ARM, AMD or Intel virtualization extensions along with the ability to translate addresses. secondary.

Earlier on June 18, Microsoft also officially announced that it will add the UEFI scanner feature in the Defender Advanced Threat Protection tool (Defender ATP) to enhance an additional layer of active security. , to help detect software attacks early on Windows 10. In other words, Microsoft Defender ATP will soon be able to detect malware entering the system through firmware updates.