Top | |
Newsletter 10/01/2022 Update 10/06/2022 |
Back to Contents |
Windows 11 2022H2.
Well, you can't always get what you want The Good The Bad & The Aw Jeez
October
06, 2022:
Reflections after doing several installations.
Core isolation provides added protection against malware and other attacks by isolating computer processes from your operating system and device.
The next evolution of computer security is protecting motherboard
resources from compromise. If and when your motherboard gets
hosed, it's next to check the balance on the AMEX card because you will
need it. NO, I don't
take credit cards.
Nonetheless, when we take a deeper look at the Core Isolation topic, again using the Gateway notebook that has been our test machine here, we see things are not all copacetic. Nevertheless, a deeper dive into the Core Isolation features reveals that the Gateway motherboard, as are many different systems, is not capable in implementing the most bleeding edge security features of Win11 2022h2. Great Caesar's Ghost! Memory Integrity is off. Your device may be vulnerable, or so the Gnomes of Redmond wish to inform me. The motherboard feature not available to me is Hard Drive Virtualization. Now I can spend many, many bytes explaining all I have done to turn Memory Integrity on. It may be the CPU, or the motherboard and/or possibly that the notebook has Windows Home; or all of the above. On the other hand, Memory Access Protection is turned on.
There is one NEW security feature of Windows 11 2022h2. And here is where the decision to simply UPDATE the original installation of Windows 11; or UPGRADE to the new OS under the same name becomes critical. At least, that is how I am framing the decision. The new feature is called Smart App Control. Like how certain 3rd party security products or some web browsers will warn if you wish to navigate to a website known to infect visitors computers.. Smart App Control does the same for executables: i.e. malware that installs itself. Below is Microsoft's summary description of the technology. We’ve added features that give people the flexibility to choose their own applications, while still maintaining tight security. Smart App Control is a new feature for individuals or small businesses designed to help prevent scripting attacks and protect users from running untrusted or unsigned applications often associated with malware or attack tools. This feature creates an AI model using intelligence, based on the 43 trillion security signals gathered daily, to predict if an app is safe. App control is known to be one of the most effective approaches to protecting against malware but can be complex to deploy. Windows 11 uses the power of AI to generate a continually updated app control policy that allows common and known safe apps to run while blocking unknown apps often associated with new malware. Our customers have asked us to make this simpler and we have responded. Microsoft is one of the Leviathans of the Deep web that monitors worldwide network traffic. If you are a threat actor operating in a region outside of US jurisdiction, Microsoft will find you and shut you down. If you are a US based threat actor, the Gnomes of Redmond, along with law enforcement, usually the FBI, will sue you to obtain a judge's order to shutdown you down. In a nutshell, Microsoft has exported and incorporated their information aggregation technology to all Windows 11 2022h2 users. The ability to aggregate worldwide threat information across the Internet into one system of information distribution has been available for some time through various security vendors. This technology heretofore came to consumers and businesses at a very high price. Now, as MS says, "The Smart App Control approach achieves the goal of making advanced app control protection widely available." (ibid.) There is one caveat, however. Smart App Control is provided on all Windows client editions with clean installations of Windows 11 2022 Update. (ibid.) Emphasis is mine. Even if, however, a clean installation is performed, MS may decide that how you use your computer makes you currently not a candidate for Smart App Control, as I was so judged. As you will see below, my Smart App Control is currently "evaluating" whether MS should turn Smart App Control on.
When Smart App Control settings is clicked, the following screen appears where I am informed about my "evaluation."
Suddenly, I feel so inadequate. But you know, I'm good enough.
I'm smart enough. I'm good looking enough. And gosh darn it, people like
me. So what is about me that needs to be evaluated?.
Mea culpa, I run one legacy application. Even though the
application is from Microsoft (1998), it is not
digitally signed. Oh, the ignominy. . The installation of unsigned, and thus suspicious, applications is what Smart App Control is designed to prevent. Will Microsoft at some unknown time just turn the feature on? I guess I will find out.
There are certainly a few annoyances with Windows 11 2022h2. On
November 28, 2021, I made a post about a little
registry hack I picked up that restored the Ribbon Toolbar to File
Explorer. That little trick no longer works, and in fact caused
File Explorer to hang on opening. Undoing the registry hack
restored File Explorer's performance.
Since Windows 10, a folder depicting your OneDrive files appeared in
File Explorer. The folder is more like a "virtual folder" in that
it doesn't really contain actual files. It displays the files that
would be synched with OneDrive. On all my systems, OneDrive is
disabled. But the folder remains in case I change my mind, I
guess.
To see which files are available to transfer, I now must get the files through the OneDrive folder. Again, OneDrive is disabled on the Gateway test machine.
This is not the end of the world. But it is one extra step along the
way. Furthermore, I do not use OneDrive. And I kind of resent
having to deal with OneDrive when it is turned off and does even
startup. There is another verse of our opening number that I think fits the times as well as when the song was first written in the 1960s.
And I went down to the demonstration
|
Gerald Reiff |
Back to Top | ← previous post | next post → |