Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses

Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses

May 21, 2024 at 06:09AM

Microsoft is implementing new security measures for Windows 11, including deprecating NT LAN Manager (NTLM) in favor of Kerberos for authentication. Other changes involve enhancing user authentication, securing Windows Hello with virtualization-based security, and implementing Smart App Control with AI capabilities. These measures aim to strengthen overall security and counter potential threats.

Key Takeaways from the Meeting Notes:

1. Microsoft announced plans to deprecate NTLM in Windows 11 to strengthen user authentication and address security vulnerabilities, with deprecation planned for the second half of 2024.

2. Other security measures include enabling LSA protection by default for new consumer devices, using VBS for Windows Hello security, and upgrading Smart App Control with AI to block unknown or malicious apps.

3. Additional security improvements include Win32 app isolation, limiting admin privilege abuse, introducing VBS enclaves for third-party developers, and making WPP the default print mode to counter risks associated with the Print Spooler process.

4. Microsoft will no longer trust TLS server authentication certificates with RSA keys less than 2048 bits and has introduced ZTDNS to help commercial customers lock down Windows within their networks.

5. There is a focus on elevating security practices and making senior leadership directly accountable for meeting cybersecurity goals as part of the Secure Future Initiative (SFI).

6. Google emphasizes the need for a new approach to security, advocating for governments to adopt a multi-vendor strategy and promote open standards to enhance system interoperability and resilience to cyber threats.

Overall, the meeting notes provide insights into significant security enhancements announced by Microsoft for Windows 11, as well as perspectives on the broader landscape of security practices and vendor diversity from Google.

Full Article