Microsoft is currently undergoing significant transformations to its Windows operating system following a troubling incident that occurred during the summer, in which a faulty CrowdStrike update caused widespread crashes on commercial devices, resulting in considerable financial losses for customers due to downtime. This event served as a catalyst for the introduction of the new Windows Resiliency Initiative, which was detailed during a session at the recent Microsoft Ignite conference. The changes being implemented are based on insights gained from the July 19 incident, and are expected to lead to a more dependable and secure release of the operating system by 2025.
David Weston, Microsoft’s vice president of enterprise and OS security, outlined three key objectives that aim to enhance the security of Windows. These objectives include improving recovery times, developing more resilient drivers and tools, and enhancing the security of the OS kernel to make it more efficient and self-protecting. These changes will also impact software developers and third-party security tool providers, with Microsoft collaborating with industry partners to enhance reliability based on the lessons learned from the July incident.
One of the main focuses of the new Windows release is to bolster its resistance to malware and script attacks by implementing stronger controls for applications and drivers. Improved identity protection measures will also be put in place to prevent phishing attacks, along with a new approach to privilege access management. A preview of the updated release will be made available to Windows Insiders in July 2025, featuring stricter controls over applications and software drivers, enhanced identity management, quick machine recovery, data encryption for folders, and improved OS management capabilities.
As Microsoft approaches the end of support for Windows 10 in October 2025, the new release is set to coincide with this transition. Despite Microsoft’s push for customers to upgrade to Windows 11, statistics show that a significant portion of PCs worldwide still operate on Windows 10. This underlines the importance of the upcoming changes and their potential impact on the broader Windows user base.
Furthermore, as part of the Secure Future Initiative announced a year ago, Microsoft is gradually transitioning from C++ to Rust as a safer programming language. This move will enable third-party security vendors to build their products outside of the kernel, providing increased access to detect and respond to threats without complicating the kernel’s operations. While this shift is expected to enhance overall security, some analysts believe that further restrictions may be necessary to fortify Windows against potential threats.
Following the CrowdStrike incident, Microsoft hosted a Windows Endpoint Security Ecosystem Summit in Redmond to discuss strategies for improving the OS’s resilience with security vendors and government agencies like CISA. The summit led to the publication of the Safe Software Deployment whitepaper by CISA, highlighting the collaborative efforts within the industry to enhance software security and reliability.
Despite the positive reception from vendors like CrowdStrike and ESET, there are ongoing discussions regarding the balance between security and performance in the new Windows release. The emphasis on trusted applications and drivers, as well as measures to counter identity-based attacks and overprivileged accounts, signifies Microsoft’s commitment to strengthening the security posture of Windows and mitigating potential threats.
Overall, Microsoft’s efforts to enhance the security and resilience of Windows are reflective of a broader industry-wide initiative to adopt more secure practices and technologies in light of increasing cyber threats. By prioritizing security and reliability in the upcoming Windows release, Microsoft aims to provide a more robust and protected environment for users and organizations alike.