Windows 10 Security Enhancements Part 1

Windows 10 Security Enhancements: General Improvements

Windows 10 comes several new security enhancements. First, it fully supports UEFI and Secure Boot, making it much more difficult for hackers to insert malware into your boot sequence.

Second, the 1511 version comes with a new BitLocker encryption key called XTS-AES. This new key provides additional protection against attacks. Also, with Windows 10, your BitLocker recovery key can be stored in Azure Active Directory. Policies can also be delivered from Azure AD to encrypt devices that bind to it.

Third, Windows 10 has a new feature called Credential Guard. Going over and configuring Credential Guard will be covered in a post next week.

Login Enhancements

All of these enhancements can be found in the Settings app by clicking Accounts, then Sign-in Options.


Next, Windows 10 comes with three new methods of signing into a machine. First, PIN sign in, allows you to sign in using a pin instead of your password. This PIN is stored in the TPM module and is devices specific, so the PIN that you set on one device cannot be used to unlock another device. In domain environments, using PINs can also help mitigate pass-the-hash attacks.

Windows Hello is also a new method of signing into a machine. This method uses a RealSense camera to capture your face. Whenever you login, the camera analyzes your face and logs you in. A RealSense camera analyzes your facial features and doesn’t care whether you grow a bread or cut your hair. Newer laptops normally come with this special camera, and you can buy them just like any other webcam for desktop PCs. You do not see the options for Windows Hello in my screenshot because I am using a desktop computer without a webcam, but if you had a device capable of RealSense, you would another option there.

Finally, you can do a picture password. This works best on tablets, and allows you to use a picture that you swipe over as your password. You essentially create a “connect the dots” diagram on the picture to use as your password.



Contact Us

On Key

More Posts

WME Cybersecurity Briefings No. 014
Cyber Security

WME Security Briefing 14 June 2024

LightSpy Spyware’s macOS Variant Detected with Advanced Surveillance Capabilities Overview Findings reveal a previously undocumented macOS variant of the LightSpy spyware. It was initially thought to target only iOS users. This spyware utilizes a plugin-based system

Read More »
WME Cybersecurity Briefings No. 013
Cyber Security

WME Security Briefing 10 June 2024

CISA Urges Patching of Actively Exploited Linux Kernel Vulnerability Overview CISA just issued an urgent advisory concerning a newly discovered security flaw in the Linux kernel. The flaw is being actively exploited to affect the netfilter component of

Read More »
3 Things to Consider Before You Enable Copilot for Microsoft 365
Microsoft Copilot

3 Things to Consider Before You Enable Copilot for Microsoft 365

In today’s digital landscape, any productivity tool that streamlines workflow and boosts performance is a pleasant addition. With its AI-powered productivity-enhancing capabilities, Microsoft Copilot has emerged as a game-changer for employees, particularly for organizations using Microsoft

Read More »
WME Cybersecurity Briefings No. 012
Cyber Security

WME Security Briefing 03 June 2024

Moroccan Cybercrime Group Exploits Gift Card Systems for Major Financial Gains Overview: Storm-0539, also called Atlas Lion, is a Moroccan cybercrime group that executes advanced email and SMS phishing attacks. They are committing fraud by utilizing

Read More »
Be assured of everything

Get WME Services

Stay ahead of the competition with our Professional IT offerings.