KEMBAR78
Microsoft on open source and security | PPTX
David Voyles, profile picture
Uploaded byDavid Voyles
PPTX, PDF657 views

Microsoft on open source and security

This document discusses Microsoft's shift towards embracing open source software and becoming more open. It notes that Microsoft's CEO now views open source positively rather than as a "cancer" as in the past. It provides examples of Microsoft's involvement in open source, including supporting Linux on Azure and open standards. The document advocates that Microsoft wants to build products with open source rather than just leverage it where convenient. It argues this shift shows Microsoft has become more open and customer-focused under new leadership.

Technology
Related topics:
IT Security
Download to read offline
Technical Evangelist DaveVoyles.com @DaveVoyles
Microsoft + Open Source Momentum Dead and buried: Microsoft's holy war on open-source software “Years ago, Microsoft's CEO described open source as a cancer. Times have changed. Just ask 22- year Redmond veteran and open- source proponent Mark Hill.” Charles Cooper Redmond top man Satya Nadella: 'Microsoft LOVES Linux‘ Neil McAllister Microsoft: the Open Source Company “This is not your dad’s Microsoft” Steven J. Vaughan-Nichols Tweet “Azure Container Service is different and offers the broadest hint yet that Microsoft wants to build real products with open source, not merely leverage it where it's convenient” Serdar Yegulalp
10+ Years of Open Source Involvement Docker on Microsoft Azure O365+Moodle Integration
We’re Reimagining Microsoft We will empower every person and every organization on the planet to achieve more Build the best-in-class platforms and productivity services for the mobile-first, cloud-first world Create more personal computing Reinvent productivity & business processes Build the intelligent cloud platform
Your Infrastructure is a Function of Time How do you plot your journey to the cloud? The Landscape of Now!
The Microsoft Open Approach For your journey to the cloud Empowering Customers By Enabling Choice To Provide a Trusted Cloud Freedom to Choose Freedom to Change Optimal Value Vibrant Local IT Economy X-Platform Open Standards Interoperability Open Source Ecosystem Engagement Secure Privacy & Control Compliance Transparent
+Hundreds of community supported images on VM Depot SQL Server Microsoft Azure is an Open Cloud We’ve delivered an open, broad, and flexible cloud across the stack Web App Gallery Dozens of .NET & PHP CMS and Web apps Microsoft Azure One in Four VMs on Azure Runs Linux Today!
Open Source on Azure: Addressing Industry Trends
Azure Open Source Customers
Facing increasing malware threats and a growing trend of BYOD with
11
12
“The Target hackers broke into the network using a stolen user name and password that had been created for the company servicing their air conditioning systems.” BRAIN KREBS (SECURITY BLOGGER) Target - Exploiting Weak Identities Source: “Cards Stolen in Target Breach Flood Underground Markets,” KrebsOnSecurity.com, December 20, 2013 13
14
THREAT RESISTANCE Increasing password theft Poor password practices Support infrastructure and costs Cumbersome and costly MFA deployment Disk encryption optional Lacking integrated DLP Varying experience in mobile and desktops Platform security built of software alone Bootkit and rootkit Pass-the-hash Trusted until detected as a threat, Not realistic facing numerous new threats per day 15@yungchou
Internet username and password 16
Business username and password 17
18
Shared secrets shhh! Weak authentication 19
WINDOWS HELLO Hello Chris 20
Multi-factor authentication (MFA) On-premises • Physical smartcard • Reader • User-and-smartcard specific • Virtual smartcard • Company issued device • Hardware-specific pin • User-and-device specific Cloud-centric • Azure Active Directory • Identity as a Service • 2FA as a Service • User-specific with designated phone Windows 10 MDM device enrollment • Microsoft Passport • Windows Hello biometrics as primary • BYOD MDM enrollment • Device Guard and Credential Guard 21@yungchou
87% Source: Stroz Friedberg, “On The Pulse: Information Security In American Business,” 2013 22
58% ? Source: Stroz Friedberg, “On The Pulse: Information Security In American Business,” 2013 23
The Fappening On August 31, 2014, a collection of almost 500 private pictures of various celebrities, mostly women, and with many containing nudity, were posted on the imageboard 4chan, via Apple’s iCloud. 24
Protecting data with Enterprise Data Protection (EDP) • Specifying “privileged apps” that can access enterprise data • Blocking selected apps from accessing enterprise data • Offering consistent UX while switching between personal & enterprise apps w/ enterprise policies in place without the need to switch environments or sign in again https://technet.microsoft.com/en-us/library/dn985838%28v=vs.85%29.aspx 25
Protecting data with Enterprise Data Protection (EDP) • Requiring Intune, Configuration Manager or an MDM solution • Encrypting enterprise data on employee-owned & corporate- owned devices • Remotely wiping enterprise data off corporate devices and employee-owned computers, without affecting the personal data https://technet.microsoft.com/en-us/library/dn985838%28v=vs.85%29.aspx 26
27
Windows 10 Enterprise Device Guard • Restricts OS to run only code signed by trusted signers • Defined by your code integrity policy through specific hardware & security configurations • OS trusts only apps authorized by your enterprise How it works: 1. Universal Extensible Firmware Interface (UEFI) 2.3.1 (or later) Secure Boot • Bootkits and rootkis • Loading/starting Windows 10 Enterprise before anything else 2. Virtualization-based security services including the core (Kernel), while preventing malware from running early in the boot process 3. User Mode Code Integrity to ensure only trusted apps/binaries to run 4. TPM to provide an isolated hardware to helps protect user credentials, certificates and secure information https://technet.microsoft.com/en-us/library/dn986865(v=vs.85).aspx 28
Dangers - - Rootkits, Bootkits 29 • Firmware/kernel/driver rootkits • Overwrite the system’s basic I/O system • Bootkits • System’s OS, infects MBR • Allows the malicious program to be executed before the OS boots
Counter Measures 30 • Secure Boot • PCs with UEFI firmware and a Trusted Platform Module (TPM) can be configured to load only trusted OS bootloaders • Trusted Boot • Windows checks the integrity of every component of the startup process before loading it. • Early Launch Anti-Malware (ELAM) • Tests all drivers before they load and prevents unapproved drivers from loading • Measured Boot • PC’s firmware logs the boot process, & Windows can send it to a trusted server that can objectively assess the PC’s health.
Prove to me you are healthy IMPORTANT RESOURCES WINDOWS PPCH & INTUNE Measured Boot Integrity Data (PPCH) Client policies (AV, Firewall, Patch state (Intune) Here is my proof Access please Provable PC Health (PPCH) Approved 31
THREAT RESISTANCE Biometrics and strong MFA with Windows Hello Microsoft Passport Enterprise Data Protection (EDP) Bitlocker auto-drive encryption Device Guard Credential Guard Windows Defender Provable PC Health Boot integrity and platform integrity with Device Guard, UEFI Secure Boot, Trusted Boot, Measured Boot, and TPM 32
Call to action 33 • Learn Windows 10 security and “Windows as a Service” • Microsoft Virtual Academy: http://aka.ms/MVA1 • Inventory hardware and software of your IT environment • Microsoft Deployment Tool Kit (MDT) • Assess your business needs for • Windows Hello and Microsoft Passport • Device Guard and Credential Guard
Call to action 34 • Roll out UEFI and Secure Boot sooner than later • Plan your next hardware/software refresh accordingly • X64, UEFI 2.3.1, TPM 2.0, Intel VT-x/AMD-V, Windows 10 Enterprise • Evaluate Windows 10, Office 365, Enterprise Management Suits, and Azure AD
Reach out to me! 35 @DaveVoyles DaveVoyles.com

More Related Content

PPTX
Tdswe 1810 learn how to create a secure and modern windows device
byPer Larsen
 
PPTX
Atea ems the next level
byPer Larsen
 
PPT
SolarWinds Mobile Admin: A Powerful Productivity Tool for Your Whole Team
bySolarWinds
 
PPTX
1 modern desktop - shift to a modern desktop
byAndrew Bettany
 
PPTX
ICSEC2016-Policy management for docker ecosystem
byBukhary Ikhwan Ismail
 
PPTX
Windows Accelerate IT Pro Bootcamp: Security (Module 4 of 8)
byIntergen
 
PPTX
Virtualization Security
bysyrinxtech
 
PDF
2018-10-23 2B - a deep dive into Microsoft 365 security - Muditha Chathuranga
byaOS Community
 
Tdswe 1810 learn how to create a secure and modern windows device
byPer Larsen
 
Atea ems the next level
byPer Larsen
 
SolarWinds Mobile Admin: A Powerful Productivity Tool for Your Whole Team
bySolarWinds
 
1 modern desktop - shift to a modern desktop
byAndrew Bettany
 
ICSEC2016-Policy management for docker ecosystem
byBukhary Ikhwan Ismail
 
Windows Accelerate IT Pro Bootcamp: Security (Module 4 of 8)
byIntergen
 
Virtualization Security
bysyrinxtech
 
2018-10-23 2B - a deep dive into Microsoft 365 security - Muditha Chathuranga
byaOS Community
 

What's hot

PDF
Sami laiho - What's new in windows 8.1
byNordic Infrastructure Conference
 
PPTX
New Horizons for End-User Computing Event - Trend
byArrow ECS UK
 
PPTX
Picking the right Single Sign On Tool to protect your network
byDavid Strom
 
PPSX
Business Mobility - otevřete svou mysl k tomu, co je možné
byMarketingArrowECS_CZ
 
PDF
Cisco web ex cloud security
byebingeorge2010
 
PDF
CSF18 - GDPR - Sami Laiho
byNCCOMMS
 
PDF
Modern Devices Management
byAtanas Gergiminov
 
PPTX
Brian Desmond - Quickly and easily protect your applications and services wit...
byNordic Infrastructure Conference
 
PPT
Trend Micro VForum Agentless Scanning Presentation
byGraeme Wood
 
PPTX
How to make the move towards hybrid cloud computing
byDavid Strom
 
PDF
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
bySam Bowne
 
PDF
SCUGBE_Lowlands_Unite_2017_Protecting cloud identities
byKenny Buntinx
 
PPTX
Azure Security Fundamentals
byLorenzo Barbieri
 
PPTX
2 modern desktop - windows deployment & servicing
byAndrew Bettany
 
PPTX
Virtualization: Security and IT Audit Perspectives
byJason Chan
 
PDF
Resin.io contribution to the AGILE-IoT project
byAGILE IoT
 
PPTX
Azure security basics
byStas Lebedenko
 
PPTX
Do you Know Where Your Data Is? - Accellion InfoSec World 2013 Conference pre...
byProofpoint
 
PDF
1.3. (In)security Software
bydefconmoscow
 
PDF
Android system security
byChong-Kuan Chen
 
Sami laiho - What's new in windows 8.1
byNordic Infrastructure Conference
 
New Horizons for End-User Computing Event - Trend
byArrow ECS UK
 
Picking the right Single Sign On Tool to protect your network
byDavid Strom
 
Business Mobility - otevřete svou mysl k tomu, co je možné
byMarketingArrowECS_CZ
 
Cisco web ex cloud security
byebingeorge2010
 
CSF18 - GDPR - Sami Laiho
byNCCOMMS
 
Modern Devices Management
byAtanas Gergiminov
 
Brian Desmond - Quickly and easily protect your applications and services wit...
byNordic Infrastructure Conference
 
Trend Micro VForum Agentless Scanning Presentation
byGraeme Wood
 
How to make the move towards hybrid cloud computing
byDavid Strom
 
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
bySam Bowne
 
SCUGBE_Lowlands_Unite_2017_Protecting cloud identities
byKenny Buntinx
 
Azure Security Fundamentals
byLorenzo Barbieri
 
2 modern desktop - windows deployment & servicing
byAndrew Bettany
 
Virtualization: Security and IT Audit Perspectives
byJason Chan
 
Resin.io contribution to the AGILE-IoT project
byAGILE IoT
 
Azure security basics
byStas Lebedenko
 
Do you Know Where Your Data Is? - Accellion InfoSec World 2013 Conference pre...
byProofpoint
 
1.3. (In)security Software
bydefconmoscow
 
Android system security
byChong-Kuan Chen
 

Similar to Microsoft on open source and security

PDF
Windows 10: Windows 10 de ITPros a ITPros
byJuan Ignacio Oller Aznar
 
PDF
Session 1: Windows 8 with Gerry Tessier
byCTE Solutions Inc.
 
PDF
Bsm mw10
byOlav Tvedt
 
PDF
Turning the tables talk delivered at CCISDA conference
byDean Iacovelli
 
PDF
CSF18 - The Night is Dark and Full of Hackers - Sami Laiho
byNCCOMMS
 
PDF
Daniel Grabski | Microsofts cybersecurity story
byMicrosoft Österreich
 
PDF
Five years of Persistent Threats
byMaarten Van Horenbeeck
 
PPTX
Teknisen tietoturvan minimivaatimukset
byTeemu Tiainen
 
PDF
Smau Milano 2016 - Paola Presutto, Microsoft
bySMAU
 
PDF
CSF18 - Moving from Reactive to Proactive Security - Sami Laiho
byNCCOMMS
 
PDF
Hackcon 2017
byOlav Tvedt
 
PDF
MT50 Data is the new currency: Protect it!
byDell EMC World
 
PDF
"Evolving Cybersecurity Strategies" - Threat protection and incident managment
byDean Iacovelli
 
PDF
Tips to Remediate your Vulnerability Management Program
byBeyondTrust
 
PDF
O365Con18 - Deep Dive into Microsoft 365 - Jussi Roine
byNCCOMMS
 
PDF
Secure Trustworthy Enterprise
byDMIMarketing
 
PDF
"Evolving Cybersecurity Strategies" - Identity is the new security boundary
byDean Iacovelli
 
PDF
Microsoft Windows 10 for the Enterprise
byDavid J Rosenthal
 
PDF
Windows Server 2016 ile İşlerinizi Daha Güvenli Gerçekleştirin!
byMSHOWTO Bilisim Toplulugu
 
PPTX
BlueHat v17 || All Your Cloud Are Belong to Us; Hunting Compromise in Azure
byBlueHat Security Conference
 
Windows 10: Windows 10 de ITPros a ITPros
byJuan Ignacio Oller Aznar
 
Session 1: Windows 8 with Gerry Tessier
byCTE Solutions Inc.
 
Bsm mw10
byOlav Tvedt
 
Turning the tables talk delivered at CCISDA conference
byDean Iacovelli
 
CSF18 - The Night is Dark and Full of Hackers - Sami Laiho
byNCCOMMS
 
Daniel Grabski | Microsofts cybersecurity story
byMicrosoft Österreich
 
Five years of Persistent Threats
byMaarten Van Horenbeeck
 
Teknisen tietoturvan minimivaatimukset
byTeemu Tiainen
 
Smau Milano 2016 - Paola Presutto, Microsoft
bySMAU
 
CSF18 - Moving from Reactive to Proactive Security - Sami Laiho
byNCCOMMS
 
Hackcon 2017
byOlav Tvedt
 
MT50 Data is the new currency: Protect it!
byDell EMC World
 
"Evolving Cybersecurity Strategies" - Threat protection and incident managment
byDean Iacovelli
 
Tips to Remediate your Vulnerability Management Program
byBeyondTrust
 
O365Con18 - Deep Dive into Microsoft 365 - Jussi Roine
byNCCOMMS
 
Secure Trustworthy Enterprise
byDMIMarketing
 
"Evolving Cybersecurity Strategies" - Identity is the new security boundary
byDean Iacovelli
 
Microsoft Windows 10 for the Enterprise
byDavid J Rosenthal
 
Windows Server 2016 ile İşlerinizi Daha Güvenli Gerçekleştirin!
byMSHOWTO Bilisim Toplulugu
 
BlueHat v17 || All Your Cloud Are Belong to Us; Hunting Compromise in Azure
byBlueHat Security Conference
 

More from David Voyles

PPTX
Developing games for consoles as an indie in 2019
byDavid Voyles
 
PPTX
Developing for consoles as an indie in 2019
byDavid Voyles
 
PPTX
Overview Microsoft's ML & AI tools
byDavid Voyles
 
PPTX
Intro to deep learning
byDavid Voyles
 
PPTX
What is a Tech Evangelist?
byDavid Voyles
 
PPTX
Students: How to get started in the tech world
byDavid Voyles
 
PPTX
Students -- How to get started in the tech world
byDavid Voyles
 
PPTX
Getting started with Emscripten – Transpiling C / C++ to JavaScript / HTML5
byDavid Voyles
 
PPTX
How to win a hackathon - Penn APps 2015
byDavid Voyles
 
PPTX
ASP.NET 5
byDavid Voyles
 
PPTX
Running, improving & maintaining a site in the real world
byDavid Voyles
 
PPTX
Building web front ends using single page applications
byDavid Voyles
 
PPTX
Web standards and Visual Studio web tools
byDavid Voyles
 
PPTX
Build and deploy an ASP.NET applicaton
byDavid Voyles
 
PPTX
Cluster puck99 postmortem
byDavid Voyles
 
PPTX
Joe Healy - How to set up your DreamSpark account
byDavid Voyles
 
PPTX
Joe Healy - Students as App Publishers
byDavid Voyles
 
PPTX
Using prime[31] to connect your unity game to azure mobile services
byDavid Voyles
 
PPTX
An Introdouction to Venture Capital and Microsoft Ventures
byDavid Voyles
 
PPTX
Intro to WebGL and BabylonJS
byDavid Voyles
 
Developing games for consoles as an indie in 2019
byDavid Voyles
 
Developing for consoles as an indie in 2019
byDavid Voyles
 
Overview Microsoft's ML & AI tools
byDavid Voyles
 
Intro to deep learning
byDavid Voyles
 
What is a Tech Evangelist?
byDavid Voyles
 
Students: How to get started in the tech world
byDavid Voyles
 
Students -- How to get started in the tech world
byDavid Voyles
 
Getting started with Emscripten – Transpiling C / C++ to JavaScript / HTML5
byDavid Voyles
 
How to win a hackathon - Penn APps 2015
byDavid Voyles
 
ASP.NET 5
byDavid Voyles
 
Running, improving & maintaining a site in the real world
byDavid Voyles
 
Building web front ends using single page applications
byDavid Voyles
 
Web standards and Visual Studio web tools
byDavid Voyles
 
Build and deploy an ASP.NET applicaton
byDavid Voyles
 
Cluster puck99 postmortem
byDavid Voyles
 
Joe Healy - How to set up your DreamSpark account
byDavid Voyles
 
Joe Healy - Students as App Publishers
byDavid Voyles
 
Using prime[31] to connect your unity game to azure mobile services
byDavid Voyles
 
An Introdouction to Venture Capital and Microsoft Ventures
byDavid Voyles
 
Intro to WebGL and BabylonJS
byDavid Voyles
 

Recently uploaded

PPTX
Top Trends in Kubernetes Security: TalosCon 2025
byCheryl Hung
 
PDF
AGV PROTOCOL BRAND KIT COMPLETE VIEW.pdf
byfagbolade
 
PPTX
Agentic AI Solutions and Services | Aeologic
byankitaeologic
 
PDF
Unlocking Full-Stack Observability for AIOps: A Precisely Ironstream for Big ...
byPrecisely
 
PDF
What is Google Cloud Platform (GCP)? A 5-Minute Guide for Beginners (2025)
byTeleglobal International
 
PDF
Agentic AI Guide for Enterprise Use-cases
byDebmalya Biswas
 
PDF
Dragino商品カタログ 2025.7 LoRaWAN・NB-IoT・LTE-M(LTE Cat.M1)対応センサーリスト
byCRI Japan, Inc.
 
PDF
Meta and Apple close to settling EU cases.pdf
byLUMINATIVE MEDIA/PROJECT COUNSEL MEDIA GROUP
 
PDF
Data Structure - 12 Graph
byAndiNurkholis1
 
PDF
NDP Act GAID Simplified: From Confusion to Compliance
byMuiz Adeleke
 
PDF
Session 2 - Agentic Orchestration with UiPath Maestro
byDianaGray10
 
PDF
Getting the Best of TrueDEM – October News & Updates
bypanagenda
 
PDF
Planetek Italia Corporate Profile brochure
byPlanetek Italia Srl
 
PDF
UiPath DevConnect 2025: Introduction to Agentic Automation
byDianaGray10
 
PDF
TrustArc Webinar - Migration to TrustArc: What Your Journey Will Look Like
byTrustArc
 
PDF
KV Caching Strategies for Latency-Critical LLM Applications by John Thomson
byScyllaDB
 
PDF
What's New? ThousandEyes Features and Highlights: October 2025
byThousandEyes
 
PDF
Ask Me Anything About AI Assist: Practical Answers for Real Workflows
bySafe Software
 
PDF
Application Monitoring and Observability: Elastic Stack Solution for Producti...
byPattabhi Amperayani
 
PDF
Using Copilot with Microsoft Office Apps
byDeb Walther
 
Top Trends in Kubernetes Security: TalosCon 2025
byCheryl Hung
 
AGV PROTOCOL BRAND KIT COMPLETE VIEW.pdf
byfagbolade
 
Agentic AI Solutions and Services | Aeologic
byankitaeologic
 
Unlocking Full-Stack Observability for AIOps: A Precisely Ironstream for Big ...
byPrecisely
 
What is Google Cloud Platform (GCP)? A 5-Minute Guide for Beginners (2025)
byTeleglobal International
 
Agentic AI Guide for Enterprise Use-cases
byDebmalya Biswas
 
Dragino商品カタログ 2025.7 LoRaWAN・NB-IoT・LTE-M(LTE Cat.M1)対応センサーリスト
byCRI Japan, Inc.
 
Meta and Apple close to settling EU cases.pdf
byLUMINATIVE MEDIA/PROJECT COUNSEL MEDIA GROUP
 
Data Structure - 12 Graph
byAndiNurkholis1
 
NDP Act GAID Simplified: From Confusion to Compliance
byMuiz Adeleke
 
Session 2 - Agentic Orchestration with UiPath Maestro
byDianaGray10
 
Getting the Best of TrueDEM – October News & Updates
bypanagenda
 
Planetek Italia Corporate Profile brochure
byPlanetek Italia Srl
 
UiPath DevConnect 2025: Introduction to Agentic Automation
byDianaGray10
 
TrustArc Webinar - Migration to TrustArc: What Your Journey Will Look Like
byTrustArc
 
KV Caching Strategies for Latency-Critical LLM Applications by John Thomson
byScyllaDB
 
What's New? ThousandEyes Features and Highlights: October 2025
byThousandEyes
 
Ask Me Anything About AI Assist: Practical Answers for Real Workflows
bySafe Software
 
Application Monitoring and Observability: Elastic Stack Solution for Producti...
byPattabhi Amperayani
 
Using Copilot with Microsoft Office Apps
byDeb Walther
 

Microsoft on open source and security

  • 1.
  • 2.
    Microsoft + OpenSource Momentum Dead and buried: Microsoft's holy war on open-source software “Years ago, Microsoft's CEO described open source as a cancer. Times have changed. Just ask 22- year Redmond veteran and open- source proponent Mark Hill.” Charles Cooper Redmond top man Satya Nadella: 'Microsoft LOVES Linux‘ Neil McAllister Microsoft: the Open Source Company “This is not your dad’s Microsoft” Steven J. Vaughan-Nichols Tweet “Azure Container Service is different and offers the broadest hint yet that Microsoft wants to build real products with open source, not merely leverage it where it's convenient” Serdar Yegulalp
  • 3.
    10+ Years ofOpen Source Involvement Docker on Microsoft Azure O365+Moodle Integration
  • 4.
    We’re Reimagining Microsoft Wewill empower every person and every organization on the planet to achieve more Build the best-in-class platforms and productivity services for the mobile-first, cloud-first world Create more personal computing Reinvent productivity & business processes Build the intelligent cloud platform
  • 5.
    Your Infrastructure isa Function of Time How do you plot your journey to the cloud? The Landscape of Now!
  • 6.
    The Microsoft OpenApproach For your journey to the cloud Empowering Customers By Enabling Choice To Provide a Trusted Cloud Freedom to Choose Freedom to Change Optimal Value Vibrant Local IT Economy X-Platform Open Standards Interoperability Open Source Ecosystem Engagement Secure Privacy & Control Compliance Transparent
  • 7.
    +Hundreds of community supportedimages on VM Depot SQL Server Microsoft Azure is an Open Cloud We’ve delivered an open, broad, and flexible cloud across the stack Web App Gallery Dozens of .NET & PHP CMS and Web apps Microsoft Azure One in Four VMs on Azure Runs Linux Today!
  • 8.
    Open Source onAzure: Addressing Industry Trends
  • 9.
  • 10.
    Facing increasing malwarethreats and a growing trend of BYOD with
  • 11.
  • 12.
  • 13.
    “The Target hackersbroke into the network using a stolen user name and password that had been created for the company servicing their air conditioning systems.” BRAIN KREBS (SECURITY BLOGGER) Target - Exploiting Weak Identities Source: “Cards Stolen in Target Breach Flood Underground Markets,” KrebsOnSecurity.com, December 20, 2013 13
  • 14.
  • 15.
    THREAT RESISTANCE Increasing password theft Poorpassword practices Support infrastructure and costs Cumbersome and costly MFA deployment Disk encryption optional Lacking integrated DLP Varying experience in mobile and desktops Platform security built of software alone Bootkit and rootkit Pass-the-hash Trusted until detected as a threat, Not realistic facing numerous new threats per day 15@yungchou
  • 16.
  • 17.
  • 18.
  • 19.
  • 20.
  • 21.
    Multi-factor authentication (MFA) On-premises •Physical smartcard • Reader • User-and-smartcard specific • Virtual smartcard • Company issued device • Hardware-specific pin • User-and-device specific Cloud-centric • Azure Active Directory • Identity as a Service • 2FA as a Service • User-specific with designated phone Windows 10 MDM device enrollment • Microsoft Passport • Windows Hello biometrics as primary • BYOD MDM enrollment • Device Guard and Credential Guard 21@yungchou
  • 22.
    87% Source: Stroz Friedberg,“On The Pulse: Information Security In American Business,” 2013 22
  • 23.
    58% ? Source: Stroz Friedberg,“On The Pulse: Information Security In American Business,” 2013 23
  • 24.
    The Fappening On August31, 2014, a collection of almost 500 private pictures of various celebrities, mostly women, and with many containing nudity, were posted on the imageboard 4chan, via Apple’s iCloud. 24
  • 25.
    Protecting data withEnterprise Data Protection (EDP) • Specifying “privileged apps” that can access enterprise data • Blocking selected apps from accessing enterprise data • Offering consistent UX while switching between personal & enterprise apps w/ enterprise policies in place without the need to switch environments or sign in again https://technet.microsoft.com/en-us/library/dn985838%28v=vs.85%29.aspx 25
  • 26.
    Protecting data withEnterprise Data Protection (EDP) • Requiring Intune, Configuration Manager or an MDM solution • Encrypting enterprise data on employee-owned & corporate- owned devices • Remotely wiping enterprise data off corporate devices and employee-owned computers, without affecting the personal data https://technet.microsoft.com/en-us/library/dn985838%28v=vs.85%29.aspx 26
  • 27.
  • 28.
    Windows 10 EnterpriseDevice Guard • Restricts OS to run only code signed by trusted signers • Defined by your code integrity policy through specific hardware & security configurations • OS trusts only apps authorized by your enterprise How it works: 1. Universal Extensible Firmware Interface (UEFI) 2.3.1 (or later) Secure Boot • Bootkits and rootkis • Loading/starting Windows 10 Enterprise before anything else 2. Virtualization-based security services including the core (Kernel), while preventing malware from running early in the boot process 3. User Mode Code Integrity to ensure only trusted apps/binaries to run 4. TPM to provide an isolated hardware to helps protect user credentials, certificates and secure information https://technet.microsoft.com/en-us/library/dn986865(v=vs.85).aspx 28
  • 29.
    Dangers - -Rootkits, Bootkits 29 • Firmware/kernel/driver rootkits • Overwrite the system’s basic I/O system • Bootkits • System’s OS, infects MBR • Allows the malicious program to be executed before the OS boots
  • 30.
    Counter Measures 30 • SecureBoot • PCs with UEFI firmware and a Trusted Platform Module (TPM) can be configured to load only trusted OS bootloaders • Trusted Boot • Windows checks the integrity of every component of the startup process before loading it. • Early Launch Anti-Malware (ELAM) • Tests all drivers before they load and prevents unapproved drivers from loading • Measured Boot • PC’s firmware logs the boot process, & Windows can send it to a trusted server that can objectively assess the PC’s health.
  • 31.
    Prove to meyou are healthy IMPORTANT RESOURCES WINDOWS PPCH & INTUNE Measured Boot Integrity Data (PPCH) Client policies (AV, Firewall, Patch state (Intune) Here is my proof Access please Provable PC Health (PPCH) Approved 31
  • 32.
    THREAT RESISTANCE Biometrics and strong MFAwith Windows Hello Microsoft Passport Enterprise Data Protection (EDP) Bitlocker auto-drive encryption Device Guard Credential Guard Windows Defender Provable PC Health Boot integrity and platform integrity with Device Guard, UEFI Secure Boot, Trusted Boot, Measured Boot, and TPM 32
  • 33.
    Call to action 33 •Learn Windows 10 security and “Windows as a Service” • Microsoft Virtual Academy: http://aka.ms/MVA1 • Inventory hardware and software of your IT environment • Microsoft Deployment Tool Kit (MDT) • Assess your business needs for • Windows Hello and Microsoft Passport • Device Guard and Credential Guard
  • 34.
    Call to action 34 •Roll out UEFI and Secure Boot sooner than later • Plan your next hardware/software refresh accordingly • X64, UEFI 2.3.1, TPM 2.0, Intel VT-x/AMD-V, Windows 10 Enterprise • Evaluate Windows 10, Office 365, Enterprise Management Suits, and Azure AD
  • 35.
    Reach out tome! 35 @DaveVoyles DaveVoyles.com