Microsoft should restrict what apps Windows can run, analysts suggest

Costea Lestoc By: Costea Lestoc
2 minute read

Microsoft revealed a new security feature at Ignite, namely the Windows Defender Application Guard. This new addition will reach enterprise customers sometime in 2017, allowing the Edge browser to run a virtual machine when dealing with unrecognized websites. This feature will completely block malware from infecting real machines.

Also, when users leave the website, Application Guard will flush the virtual machine, so no data gets retained in the computer. John Pescatore, who works as director of New Security Trends at the SANS Institute, says that this move isn’t enough. He claims that the main concept of containerization has a security flaw in itself.

He says that the problem is what happens when the malware is running in the container, before users manage to shut it down. Moreover, he underlined the fact that Application Guard is just another way for Microsoft to say “Oh well, hopefully malware will not hurt your machine that much”. He also added that just like many other protection measures Microsoft implemented in Windows, Application Guard was just another band-aid that didn’t really solve the security issues within the operating system. The main problem here is the fact that any user can install unverified third party apps.

Apparently, users don’t really need this feature on browsers that run on Android and iOS, so the question here is why isn’t the company doing an exclusive Windows App Store. Nowadays, the entire smartphone zone is based around the app store, which makes running apps on your device easy and, more importantly, safe.

Windows Store, for instance, offers these features, but it cannot protect Windows in the same manner until Microsoft gets rid of the side problem. In a nutshell, Microsoft should restrict what Windows can run, and give up building one trench line after another.

All in all, it seems that if Microsoft does not close the gate that lets any code enter the system, the company will not achieve 100% security for its operating system.

RELATED STORIES TO CHECK OUT:

For various PC problems, we recommend this tool.

This software will repair common computer errors, protect you from file loss, malware, hardware failure and optimize your PC for maximum performance. Fix PC issues now in 3 easy steps:

  1. Download this PC Repair Tool rated "Excellent" on TrustPilot.com.
  2. Click “Start Scan” to find Windows issues that could be causing PC problems.
  3. Click “Repair All” to fix all issues with Patented Technologies (requires upgrade).

Discussions

Next up

Update KB4470200 blocks problematic Insider build on Nuvoton PCs

Giles Ensor avatar. By: Giles Ensor
2 minute read

The cumulative update KB4470200 for Windows 10 Fast Ring has just launched in the November Patch Tuesday roll out, and it packs two important fixes. Grab […]

Continue Reading

Download KB4467697, KB4467703 to fix high CPU usage issues

Giles Ensor avatar. By: Giles Ensor
2 minute read

We continue our Patch Tuesday series. Two more updates for you in this article – KB4467697 and KB4467703, which both are an attempt to fix an issue […]

Continue Reading

Windows 10 KB4467708, KB4464455 fix black screen and camera issues

Giles Ensor avatar. By: Giles Ensor
3 minute read

In this article, we are going to be talking about two November 2018 Patch Tuesday updates – KB4467708 and KB4464455. Both these updates are quality improvement […]

Continue Reading