Features deployed for business users are:
- Trusted boot helps protect the boot process and is designed to eliminate the possibility for malware to hijack the boot process or hide from antimalware software.
- Microsoft IT is performing a pilot on approximately 1,000 machines to evaluate changes in the way DirectAccess works, including validating virtual smart cards that use a machine’s Trusted Platform Module (TPM) chip—a chip that supports BitLocker and, in Windows 8, protects the virtual smart card certificate’s private key.
- Measured boot enables the reporting of machine health in a secure way that is measured by hardware at boot time. Microsoft IT plans to use a remote health attestation like measured boot via a network-based
custom system health agent to ensure security health of managed Windows 8 DirectAccess systems. - Microsoft IT needed to make sure that Microsoft BitLocker worked on Windows 8. BitLocker drive encryption can protect data on mobile devices that include a TPM chip. Microsoft IT is also validating a new BitLocker feature called Network Key Protector Unlock that allows BitLocker to automatically unlock a drive when the machine is plugged into the corporate network.
No comments:
Post a Comment