Microsoft launched Win32 application isolation technology at the 2023 Build conference, which is a sandbox technology that uses AppContainers to improve application security. Today, the technology officially enters public preview.
Win32 application isolation technology is a new security feature launched by Microsoft in response to the increase in zero-day attacks in recent years. Zero-day attacks are attacks that exploit undisclosed vulnerabilities in software or systems, often bypassing traditional protective measures. Microsoft Vice President David Weston wrote in the announcement article that many zero-day attacks now target popular desktop applications, so Win32 Application Isolation technology is about creating a new default isolation standard in Windows clients.
Win32 application isolation technology is built on AppContainers (among other technologies). AppContainers are a technology specifically designed to encapsulate and restrict process execution, helping to ensure that processes run with limited permissions, often referred to as low integrity levels. Unlike existing Windows sandbox functions based on virtualization security (IT House Note: such as Windows Sandbox and Microsoft Defender Application Guard), Win32 application isolation technology allows developers to use tools provided by Microsoft to add This safety feature.
The goal of Win32 Application Isolation technology is to prevent Win32 (desktop) applications from running with the same security permissions as the user. As a result, applications that use Win32 Application Isolation technology run at a lower permission level, limiting the damage they can cause if compromised. In practice, this means that an isolated application may need to request from the user from time to time to perform certain tasks that could be exploited maliciously, such as accessing documents or the computer's camera. So it remains to be seen what impact this technology will have on user experience.
The above is the detailed content of To combat zero-day attacks, Microsoft Windows 11 Win32 App Isolation enters public preview. For more information, please follow other related articles on the PHP Chinese website!