security framework

AppWizard
June 25, 2026
Riot Games has introduced a new feature for its Vanguard anti-cheat system called Vanguard On-Demand, which allows the kernel driver to load only when a Riot game is launched and unload upon exit. This change ends the previous practice of loading the driver at Windows start-up, which has been in place since 2020. The new mode is supported by Windows 11 25H2 and requires specific hardware configurations, including UEFI Secure Boot, TPM 2.0, Virtualization-Based Security (VBS), Hypervisor-Protected Code Integrity (HVCI), and IOMMU. Approximately 35% of players currently meet these hardware requirements, while around 3% are using incompatible systems. Riot has created a checklist called Vanguard Pre-Check to help players determine if their systems qualify. The percentage of fully secured machines is estimated to be around 34.33% and is increasing monthly. Players whose systems do not meet the criteria will need to make manual adjustments in their BIOS. Vanguard On-Demand mode will be available for players on Windows 11 starting later today. The feature is based on Microsoft’s Runtime Driver Attestation Report, which tracks driver activity since boot and helps ensure no vulnerable drivers have been loaded while Vanguard is inactive. Riot Games has required TPM 2.0 and Secure Boot on Windows 11 since 2020 and has faced criticism for these requirements. Enabling VBS and HVCI may affect frame rates and could disable older peripheral drivers due to Microsoft's vulnerable driver blocklist.
Winsage
June 24, 2026
Microsoft has announced enhancements to its Secure Boot certificate management to improve the security of Windows operating systems. Key features include improved certificate management for easier handling, automated updates for Secure Boot certificates to reduce manual intervention, and enhanced user guidance through resources on Microsoft Learn.
Winsage
June 13, 2026
Microsoft has introduced DNS over HTTPS (DoH) on Windows Server 2025, enhancing network security by encrypting DNS traffic for client-to-server communications. This feature, previously available only in Windows client editions, is now part of Microsoft's Zero Trust architecture. DoH routes DNS traffic through HTTPS secured with TLS certificates, preventing eavesdropping and safeguarding DNS data from tampering. It adheres to the IETF DNS over HTTPS standard (RFC 8484) and can integrate with existing infrastructure, allowing organizations to maintain unencrypted DNS traffic if needed. DoH is available for Windows Server 2025 systems updated to the latest Patch Tuesday release, and Microsoft has provided guidance on enabling this feature. However, DNS traffic exchanged between two DNS servers will not be encrypted by DoH.
Winsage
June 3, 2026
Microsoft has integrated over 75 Unix commands into Windows CMD and PowerShell through the introduction of coreutils, a multi-call binary file created in Rust. This includes commands like cat, ls, grep, and head, enhancing the command experience across various platforms. Grep is now available natively on Windows, allowing users to search through large files efficiently. Coreutils aims to provide memory safety and cross-platform compatibility, and can be downloaded via CMD WinGet. While some Linux commands overlap with existing Windows commands, coreutils simplifies the transition for users moving from Linux to Windows. Additionally, Microsoft is focusing on AI technologies and has introduced tools like OpenClaw and Microsoft Execution Containers to enhance developer capabilities.
Winsage
June 3, 2026
Build is an annual event focused on connecting with the global developer community and sharing innovations. Feedback from developers emphasizes the need for a frictionless and adaptable platform for seamless development across various environments. Key announcements include: - Coreutils for Windows: A suite of Linux-like command line utilities available natively on Windows. - WSL containers: A forthcoming public preview feature for creating and interacting with Linux containers. - Windows Development Skills: Structured knowledge for building native Windows apps using WinUI3 and WinApp CLI, now generally available. - Intelligent Terminal: An experimental feature integrating context-aware intelligence into the terminal for improved debugging and task execution. - Windows Developer Configurations: A WinGet-powered setup for distraction-free development, now generally available. - Windows 365 with Developer Configuration: A pre-configured cloud-based development environment in public preview. For security, the announcements include: - Microsoft Execution Containers (MXC) SDK: A policy-driven execution layer for agent access and containment, available in early preview. - Agent 365 integration: Enhances security for agents with protections from Defender, Entra, Intune, and Purview, available in preview. - OpenClaw: Runs securely on Windows using MXC for easy installation of agent connections. - NVIDIA's OpenShell: A deployment package for autonomous agents on Windows, built on MXC. - Windows 365 for Agents: Secure Cloud PCs for executing enterprise workflows, now generally available. For AI capabilities: - Aion 1.0 Instruct: An on-device small language model for local workloads, available soon. - Expanded Windows AI APIs: Now accessible on more Windows 11 PCs, enhancing local AI capabilities. - Surface RTX Spark Dev Box: A device for developers featuring NVIDIA RTX Spark silicon for local AI workloads. - DGX Station for Windows: A powerful AI supercomputer for developing agents, coming in Q4. - Project Solara: A platform for agent-driven experiences, simplifying development across environments. - New Speech Recognition API: Real-time, on-device transcription capabilities. - Expansion of Windows AI APIs across GPUs and CPUs: Now available for broader hardware support. Windows is enhancing its security framework to reduce risks and ensure robust protection for applications.
Winsage
June 3, 2026
Microsoft is transforming Windows into an "AI operating system" that will enable AI agents to perform tasks traditionally managed by humans, such as sending emails and scheduling meetings. During the Build 2026 developer conference, Microsoft introduced 'Scout,' an AI secretary that autonomously manages tasks and integrates with a system called MSIQ for organizational workflows. CEO Satya Nadella emphasized the creation of a workspace for AI agents within Windows, supported by a security framework called "MXC" to ensure controlled operation. Each AI agent will have a unique identity for accountability. Microsoft also unveiled seven proprietary AI models, including "MAI-Thinking-1," and a semiconductor called 'Maia 200,' which outperforms Nvidia's chips. Additionally, Microsoft is developing 'Project Solara,' a prototype for dedicated devices to facilitate AI interactions.
Winsage
June 1, 2026
Nvidia unveiled its RTX Spark superchip on May 31st, combining a 20-core Arm-based Grace CPU with a Blackwell RTX GPU, marking its entry into the Windows PC market. The chip features up to 128GB of unified memory, 1 petaflop of AI compute capability, and 6,144 CUDA cores. It will debut in laptops and compact desktops from manufacturers like ASUS, Dell, HP, Lenovo, Microsoft Surface, and MSI, with Acer and GIGABYTE expected to follow. Microsoft collaborated with Nvidia to develop new Windows security features for on-device AI agents. The RTX Spark, previously known as N1X, has been in development for three years, with initial reports in 2023 and delays attributed to advancements in Arm technology and notebook demand. Microsoft's Windows on Arm initiative, previously exclusive to Qualcomm, has opened opportunities for MediaTek, Nvidia, and AMD. The RTX Spark aims to enhance local AI applications, with Adobe reengineering its software for the platform and over 100 software vendors supporting it. However, challenges remain, including reliance on x86 emulation and delays in the next-generation Windows on Arm platform. Pricing details are scarce, but the RTX Spark is expected to be positioned at a premium price point.
Search