Microsoft has announced the Windows Resiliency Initiative to enhance the resilience of Windows and prevent widespread incidents like the CrowdStrike event in July. This initiative includes:
1. Improving system resilience based on July incidents
2. Allowing apps to run without admin privileges
3. Better control over apps and drivers on machines
4. Enhancing user identity verification and preventing phishing
Microsoft plans to add features to Windows so that security software can work directly through APIs, without loading into the kernel but functioning like regular apps. These features are expected to be available for security software developers to try out internally by July 2025, as Microsoft transitions from C++ to Rust.
Reducing the need for admin rights gradually, such as during program installation where instead of granting admin rights outright, Windows Hello will prompt for approval for essential system changes only, and immediately discard tokens after the changes. The Hotpatch system allows Windows updates without the need to reboot, reducing the yearly reboots from 12 to 4. Organizations can specify authorized DNS servers and control outbound traffic from the internet.
TLDR: Microsoft’s Windows Resiliency Initiative aims to enhance system resilience, reduce admin privileges, improve control over apps and drivers, enhance user identity verification, and prevent phishing attacks. Transitioning to Rust and introducing new features for security software development by July 2025.
Leave a Comment