Microsoft has announced a major security update for Windows 11 that will bring the desktop operating system closer to the standards of mobile platforms. From now on, every application must obtain explicit user permission before accessing files, the camera, the microphone, or other important resources.
This is reported by Finway
Key Innovations in Windows Baseline Security Mode
The update is being implemented through the initiatives Windows Baseline Security Mode and User Transparency and Consent. These initiatives change the traditional approach to OS security, which is installed on more than a billion devices worldwide. According to Windows platform engineer Logan Iyer, the innovations respond to the increasing number of cases where programs changed system settings, installed additional software, or modified key elements of the operating system without the user’s knowledge.
“After the implementation of the new mechanisms, the system will show a prompt every time an application attempts to access sensitive data or make system changes. Permissions granted can be revoked at any time.”
Windows Baseline Security Mode allows only those applications, services, and drivers that have proper digital signatures to run. At the same time, both users and IT administrators will be able to manually allow the operation of specific programs that do not meet these requirements. The implementation of the new system will occur gradually, in close collaboration with corporate clients and developers.
Update as Part of the Secure Future Initiative
These changes are part of the extensive Secure Future Initiative program launched by Microsoft following high-profile cyber incidents in 2023. It became particularly relevant due to the breach of Exchange Online by the Storm-0558 group, which gained unauthorized access to the company’s cloud services. As part of this program, the login protection mechanisms for Microsoft Entra ID have already been strengthened, ActiveX has been disabled in Microsoft 365 and Office 2024 for Windows, and access to SharePoint and OneDrive files using outdated authentication protocols has been blocked.
Historically, Windows has typically provided applications with significantly broader access than mobile operating systems. The shift to a transparent user consent model will allow for more effective protection of personal data, reduce the risks of hidden changes in the system, and decrease the likelihood of unwanted software installation. Thus, Microsoft is adapting Windows 11 to modern security standards, enhancing user trust and protection.