“This ecosystem is mature, professional enough to let you put the customer first,” stated David Weston, Microsoft’s Corporate Vice President of Enterprise and OS Security, during a recent interview. His words resonate deeply with the ongoing initiatives at Microsoft, particularly as the company prepares to enhance the resilience and security of its Windows operating system.
In a strategic move, Microsoft is set to offer limited access to a Windows endpoint security platform for third-party vendors, a part of its Microsoft Virus Initiative (MVI). This initiative aims to elevate safe deployment practices across the board, ensuring a more secure environment for users. The tech giant is also collaborating with some of its most vocal critics to avert a recurrence of the widespread outage experienced in 2024, which was triggered by a faulty CrowdStrike update.
Microsoft Windows Updates
The Windows endpoint security platform is entering a private preview phase in July for select MVI partners, marking it as a minimum viable product (MVP). This phase will allow partners to provide feedback over several months, ensuring that the platform meets the needs of the community. “We want to make sure we’re … not tone deaf,” Weston emphasized, highlighting the importance of transparency and equal participation in the development process.
Key details about the Windows endpoint security platform and other security enhancements include:
- Collaboration with third-party security vendors to ensure a robust engineering process.
- Services will run outside of the Windows kernel, enhancing reliability and recovery options.
- Feedback from partners will drive the development of additional functionalities.
Windows Endpoint Security Platform
As part of the MVI, the upcoming Windows endpoint security platform will allow partners to develop products that operate in user mode, akin to applications, rather than being confined to the Windows kernel. This shift is designed to prevent significant disruptions like the previous CrowdStrike incident.
Weston expressed confidence that the demand from customers will encourage third-party vendors to swiftly adopt this new platform. “Windows isn’t just a product. It is an ecosystem,” he remarked, underscoring Microsoft’s role as a caretaker of this ecosystem. The collaborative spirit among competitors is seen as beneficial for the overall success of the Windows platform.
Is Microsoft Helping Competitors Improve?
Weston elaborated on the purpose of the latest MVI version, which focuses on enhancing safe deployment practices among competitors. “This is ultimately about customer trust requirements, transparency,” he noted, emphasizing that partners must meet resiliency standards to gain access to critical systems.
He believes that the evolution of the competitive landscape is advantageous for Microsoft customers. “There is a maturity of that competitive ecosystem,” he explained, noting that vendors are beginning to recognize the importance of delivering comprehensive solutions beyond mere detection capabilities.
Resiliency Effort Includes Simplified UI, Connected Cache
In addition to the security platform, Microsoft is introducing a simplified user interface (UI) and a more efficient experience for unexpected restarts in devices running Windows 11 version 24H2. The general availability of quick machine recovery (QMR) will enable IT administrators to automate fixes and restore productivity without extensive manual intervention.
Furthermore, the Connected Cache service, launching on July 9, aims to enhance bandwidth efficiency during device upgrades and other processes. This service will cache Microsoft-published content locally, thereby reducing reliance on cloud resources and improving overall resiliency.
Security Rivals Endorse Efforts
Microsoft’s initiatives have garnered support from various third-party security vendors involved in the MVI. Stefan Krantz of SentinelOne highlighted the collaborative efforts to enhance endpoint protection on Windows, while Trend Micro’s Louise McEvoy emphasized the commitment to maintaining operational continuity for partners.
Alex Ionescu from CrowdStrike noted the significant customer interest in the advancements being made, stating that the collaboration has led to substantial improvements in the planned capabilities of the Windows endpoint security platform. ESET’s Juraj Malcho echoed this sentiment, affirming the importance of rigorous standards for MVI partners to ensure efficient incident management.
Microsoft Solution Provider Feedback
Feedback from Microsoft solution providers has been largely positive. John Snyder, CEO of Net Friends, expressed optimism about Windows’ enhanced protection against third-party software mishaps. Meanwhile, Bobby Guerra of Axiom called for further investments in Microsoft’s first-party tools, advocating for greater partner control and responsiveness within the Intune offering.
As Microsoft continues to refine its security offerings and foster collaboration within its ecosystem, the focus remains steadfast on delivering a resilient and secure Windows experience for all users.
