A Microsoft products announced at its annual conference of developers and IT professionals the launch of a sample version of Windows Server 2022. The company will bring security improvements like Secured-core to the platform.
The new version will have secure connectivity and enabled by Encryption AES 256 industry standard. Another differential will be the management of the hybrid server, enabling more accurate monitoring of performance and event alerts in the Windows Admin Center.
"In addition, this release includes significant improvements to the Windows container runtime, such as virtualized time zones and IPV6 support for globally scalable applications, as well as container tools for .NET, ASP.NET and IIS applications," added Microsoft. .
Windows Server 2022 with Secured-core
Computers with a secure core are currently the solution to circumvent the number of growing firmware vulnerabilities. Attackers can access the secure boot of a Windows machine and change the visibility at the firmware level present in security solutions. endpoint current.
Since 2019 the company has been adopting Secured-core in all computers. The intention is to maintain the best security features to protect users from threats, such as hacker attacks and common malware, that take advantage of security holes to take action.
Secure-core computers developed by Microsoft offer the following features:
- Safely load Windows: Enabled with Hypervisor Enforced Integrity, a PC with a protected core, it will only launch programs signed and approved by known authorities. In addition, the hypervisor sets and enforces permissions to prevent malware from attempting to modify memory and make it executable.
- Firmware protection: System Guard Secure Launch uses the CPU to validate the device to boot safely, preventing advanced firmware attacks.
- Identity protection: Windows Hello allows the user to sign in without a password. Credential Guard takes advantage of VBS to prevent identity attacks.
- Safe, isolated hardware operating environment: The machine uses the Trusted Platform Module 2.0 and a modern CPU with dynamic root trust measurement (DRTM) to safely boot the system and minimize firmware vulnerabilities.
Secure core servers now follow these provisions to boot securely, protect against firmware bugs, protect the operating system from attack, prevent unauthorized access, and maintain user identities and domain credentials.
Windows Server 2022 together with Secured-core adds the following preventive defense features to servers:
- Enhanced protection against exploits: Hardware innovations enable robust, high-performance implementations of exploit mitigations. Hardware-enforced stack protection will take advantage of the latest chipset security extension, flow control application technology. Windows Server 2022 and applications will be protected by a common exploitation technique. Return-oriented programming (ROP), often used to hijack a program's intended control flow.
- Connection security: Secure connections are at the heart of today's interconnected systems. Transport Layer Security (TLS) 1.3 is the latest version of the most widely deployed security protocol on the Internet, which encrypts data to provide a secure communication channel between two endpoints. TLS 1.3 eliminates obsolete cryptographic algorithms, increases security over to older versions and aims to encrypt as much of the handshake as possible. Windows Server 2022 includes TLS 1.3 enabled by default, protecting the data of clients connecting to the server.
- Enhanced account support for containers: Containers are being adopted by many customers as a preferred building block for their applications and services. Customers use group managed service accounts (gMSA) as the recommended Active Directory identity solution to run a service on a server farm. Today, anyone trying to containerize their Windows services and applications they use (gMSA) must join their container host's domain to enable functionality.
- But the user must be aware. This can cause scalability and management problems. Windows Server 2022 supports enhancements to (gMSA) for Windows containers that allow you to enable support without the domain joining the host.
Secured-core for Azure IoT Edge devices
Microsoft also introduced the Edge Secured-core device label on the Microsoft Ignite 2021 to identify Azure IoT Edge devices, which meet Secured-core specifications.
According to the company, “Now, corporate customers looking for Internet of Things (IoT) devices that meet the security bar defined by Azure can easily identify device models that bear the Edge Secured-core label in the Device Catalog. Azure ”.