Microsoft has provided more information about the security improvements in Windows 11, explaining that all certified systems sold by partners would come with a TPM 2.0 chip by default.
The company therefore wants to provide users with enhanced protection out of the box, explaining that by offering hardware-level security, Windows 11 would be able to provide an additional layer of defense against sophisticated attacks and ransomware.
In addition, Windows 11 will come with support for Azure-based Microsoft Azure Attestation, and of course, it continues the software giant’s push for the mass adoption of new technology like VBS, HVCI, and Secure Boot.
“Windows 11 will also come with new security innovations like hardware-enforced stack protection for supported Intel and AMD hardware, helping to proactively protect our customers from zero-day exploits. Innovation like the Microsoft Pluton security processor, when used by the great partners in the Windows ecosystem, help raise the strength of the fundamentals at the heart of robust Zero Trust security,” Microsoft says.
Windows 11 to launch in late 2021 for the first users
Windows 11 pushes Microsoft’s approach for a world without passwords even further, so it will include Windows Hello for biometric authentication when the necessary hardware is available.
“All these components work together in the background to help keep users safe without sacrificing quality, performance, or experience. The new set of hardware security requirements that comes with this new release of Windows is designed to build a foundation that is even stronger and more resistant to attacks on certified devices. We know this approach works—secured-core PCs are twice as resistant to malware infection,” the company notes.
Windows 11 will become available for testers as soon as this week, while the official rollout could happen in the fall of the year, most likely October or November.