Microsoft's Secured-core PCs will defend against firmware level threats

News
By published

New initiative will protect devices from firmware vulnerabilities

(Image credit: Microsoft)

In an effort to protect users against firmware level threats, Microsoft has announced a new initiative the software giant has been working on with its partners to create Secured-core PCs.

The company partnered with both chip and device makers to apply “security best practices of isolation and minimal trust to the firmware layer, or the device core, that underpins the Windows operating system”.

Secured-core PCs will be available from a wide variety of device makers including Dell, Dynabook, HP, Lenovo, Panasonic and Microsoft. While the full list of Secured-core PCs has not yet been released, two notable examples include HP's Elite Dragonfly and Microsoft's Surface Pro X.

As malicious code on the firmware layer can be hard to detect and even more difficult to remove, firmware has emerged as a top target for cybercriminals. According to the National Vulnerability Database, the number of discovered firmware vulnerabilities are growing each year.

Secured-core PCs

To be classified as a Secured-core PC, a device needs to be running Windows Defender's System Guard Secure Launch which is available on newer hardware from AMD, Intel and Qualcomm. System Guard uses firmware to start the hardware and then shortly after it reinitializes a system into a trusted state.

Secured-core PCs also required the Trusted Platform Module (TPM) 2.0 as it allows admins to measure the components used to verify that a device is booted securely. Windows also monitors and restricts the functionality of potentially dangerous firmware by using System Management Mode (SMM).

Microsoft's new initiative is not for everyone and is instead intended for industries such as financial services, government and healthcare. Secured-core PCs are also for those who handle highly sensitive intellectual property or personal data that is the target of state-sponsored hackers.

While experts have yet to test the added security of Secured-core PCs, these machines are designed to boot securely, protect users from firmware vulnerabilities and prevent unauthorized access to devices and the sensitive data and credentials they store.

Via VentureBeat

TOPICS
Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
Data Breach
Thousands of healthcare records exposed online, including private patient information
China
Juniper patches security flaws which could have let hackers take over your router
Representational image depecting cybersecurity protection
GitLab has patched a host of worrying security issues
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
AI agents can be hijacked to write and send phishing attacks
China
Volt Typhoon threat group had access to American utility networks for the best part of a year
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Latest in News
Apple iPhone 16 Pro HANDS ON
Leaked iPhone 17 dummy units may have given us our best look yet at all four models
A super close up image of the Google Gemini app in the Play Store
It's official: Google Assistant will be retired for phones this year, with Gemini taking over
Quordle on a smartphone held in a hand
Quordle hints and answers for Sunday, March 16 (game #1147)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Sunday, March 16 (game #378)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Sunday, March 16 (game #644)
Three iPhone 16 handsets on show
Apple could launch an iPhone 17 Ultra this year – but we've heard these rumors before
More about security
Half man, half AI.

Generative AI has a long way to go as siloed data and abuse of its capacity remain a downside – but it does change the game for security teams
Email

Over 90% of Americans demand a "right-to-disconnect" law which would protect them from out-of-hours work communication
Money

Financial leaders still rely on regular tools like Excel for automation tasks over AI
See more latest
Most Popular
Money
Financial leaders still rely on regular tools like Excel for automation tasks over AI
Two examples of the Asus Fragrance Mouse MD101 sitting on a table
Your next computer mouse could have a fragrance compartment for aromatherapy oils – and this Asus idea is nothing to sniff at
Apple iPhone 16 Pro HANDS ON
Leaked iPhone 17 dummy units may have given us our best look yet at all four models
Eizo FlexScan FLT
Behold the world's most power-efficient monitor — the EIZO FlexScan FLT
A close up of a xenomorph with Earth reflected on its head in the Alien: Earth TV show teaser
Alien: Earth: everything we know so far about FX's upcoming Alien TV show coming to Hulu and Disney+
Half man, half AI.
Generative AI has a long way to go as siloed data and abuse of its capacity remain a downside – but it does change the game for security teams
diamond gemstone
Diamond set to become mainstream coolant for AI GPU servers as world’s best thermal conductor promises 25% better overclocking, and 'double performance per watt'
Zuckerberg Meta AI
Meta powers ahead with conscious chip uncoupling with Nvidia as it tests its first in-house training AI-PU
Email
Over 90% of Americans demand a "right-to-disconnect" law which would protect them from out-of-hours work communication
A super close up image of the Google Gemini app in the Play Store
It's official: Google Assistant will be retired for phones this year, with Gemini taking over