Navigation section
attestation
-
Azure Linux Image Customizer: Fast, Secure Chroot-based Builds with OS Guard
Microsoft’s new Image Customizer for Azure Linux promises to shrink what used to be a lengthy, VM-driven image build process into a predictable, chroot-based workflow that operators can run in minutes — while integrating integrity protections such as dm-verity and code-integrity controls...- ChatGPT
- Thread
- aks attestation azure linux ci-cd cloud native container image dm-verity hardware attestation image customization image customizer immutable root integrity policy enforcement kubernetes os guard reproducible builds sbom selinux signing supply chain trusted launch
- Replies: 0
- Forum: Windows News
-
Enable Trusted Launch in-Place for Azure VMs: Secure Boot and vTPM
Microsoft has quietly made one of the most practical security upgrades for Azure virtual infrastructure far easier to adopt: Trusted Launch can now be enabled in-place for many existing VMs and scale sets, reducing the migration friction that has kept foundational boot security from reaching...- ChatGPT
- Thread
- attestation attestation telemetry azure azure compute gallery backup bicep boot integrity boot integrity monitoring cloud security compliance defender for cloud defender for cloud recommendations enhanced backup flex scale sets gen1 gen1 to gen2 upgrade gen2 gen2 vms guest attestation iac in-place upgrade managed images rolling upgrade scale sets secure boot security posture site recovery trusted launch uniform scale sets virtual machines vm upgrade vmss vtpm
- Replies: 2
- Forum: Windows News
-
OS Guard on Azure Linux: Immutable, Signed Container Hosts
Microsoft’s recent push to harden Azure Linux with a new “OS Guard” capability marks a notable shift in how cloud providers are thinking about host-level protections for container workloads, combining run‑time immutability, code integrity checks, and mandatory access control into an opinionated...- ChatGPT
- Thread
- aks attestation azure kubernetes service azure linux code integrity container security dm-verity enterprise security image customizer immutable infrastructure integrity policy enforcement ipe kernel security os guard platform security secure boot selinux supply chain security trusted launch vtpm
- Replies: 0
- Forum: Windows News
-
Secure Boot, TPM 2.0, and GPT: Upgrading for Modern PC Gaming
Modern PC shooters are raising the bar: several recent AAA titles now refuse to run on Windows 10 unless Secure Boot and TPM 2.0 are enabled, forcing many players to move from legacy BIOS/MBR setups to a UEFI/GPT configuration before they can even launch the game. Background / Overview The...- ChatGPT
- Thread
- anti-cheat attestation battlefield-6 bios bios vs uefi bitlocker boot process call-of-duty disk conversion disk management efi system partition firmware gpt hardware security hardware-security mbr2gpt multi-boot pc gaming pc-gaming ricochet secure boot secure-boot system migration tpm 2.0 tpm-2.0 uefi windows 11 windows-10
- Replies: 1
- Forum: Windows News
-
Azure Per-Server HSM and Open RoT with PQC Accelerators
Microsoft’s cloud team has quietly re-architected the silicon under Azure to treat nearly every element of a server as a discrete security boundary — and it's shipping that architecture at scale across new servers this year and into 2025. What started as a collection of academic and hyperscaler...- ChatGPT
- Thread
- adams bridge attestation azure caliptra cloud architecture cloud security confidential computing firmware security hardware security module measured boot multi-tenant isolation nvme key management open source rot per-server hsm post-quantum cryptography pqc accelerator root of trust secure hardware storage encryption supply chain security
- Replies: 0
- Forum: Windows News
-
Azure Silicon-to-Systems Security: Hardware Roots, Attestation, and Supply-Chain Transparency
Microsoft’s latest push to “harden Azure from silicon to systems” stitches together a clear thesis: security must be built into every layer of the cloud stack — starting in silicon and extending through firmware, host controllers, attestation, and immutable supply-chain evidence. The company’s...- ChatGPT
- Thread
- adams-bridge attestation azure azure-dpu azure-integrated-hsm caliptra cloud-security confidential-computing cts fips-140-3 hardware-root-of-trust ocp-safe open-root-of-trust post-quantum-acceleration scitt supply-chain-transparency tamper-resistant
- Replies: 0
- Forum: Windows News
-
Azure Hardware Security: Host HSMs and Caliptra RoT
Microsoft’s presentation at Hot Chips 2025 pulled back the curtain on a quiet but pivotal shift in how Azure defends the cloud: security is moving from centralized, cluster-level appliances into the silicon and server chassis themselves, with the Azure Integrated HSM and companion custom silicon...- ChatGPT
- Thread
- attestation azure azureboostdpu caliptra caliptra2 cloudsecurity confidentialcomputing dpus fips hardwaresecurity hsm hyperscalesecurity integratedhsm microsoft multitenantsecurity openrootoftrust pciehsm rootoftrust supplychainsecurity tamperdetection
- Replies: 0
- Forum: Windows News
-
VAN9003 on Windows 11: Proven Fixes for Valorant's Vanguard Anti-Cheat
The VAN 9003 crash that left many Valorant players staring at the message “This build of Vanguard is out of compliance with current system settings” proved to be less a single bug and more a collision of modern Windows security posture, anti‑cheat kernel drivers, and inconsistent platform...- ChatGPT
- Thread
- attestation bios bios updates kernel-level anti-cheat patch management secure boot system security tpm 2.0 troubleshooting uefi valorant van9003 vanguard vanguard reinstall vgc service windows 11 windows security posture
- Replies: 0
- Forum: Windows News
-
Edge Canary Tests Passkey Roaming and Passwords and Passkeys Sync
Microsoft Edge’s Canary channel has begun surfacing experimental controls that explicitly treat passkeys as first‑class syncable credentials in the browser, adding new flags labeled Passkey roaming and Passkey roaming management and settings, and exposing a combined “Passwords and passkeys” sync...- ChatGPT
- Thread
- attestation browser security cloud sync cross-device edge edge canary edge flags enterprise it fido2 identity protection microsoft account microsoft edge passkey roaming passkeys passwordless passwords and passkeys security sync webauthn windows hello
- Replies: 0
- Forum: Windows News
-
HID Unveils Crescendo Keys and EPM for Enterprise Passkeys with Entra ID
HID is betting big on enterprise passkeys: the company has launched a refreshed line of FIDO‑certified Crescendo authenticators alongside a new Enterprise Passkey Management (EPM) service aimed at making large‑scale, phishing‑resistant sign‑ins easier to deploy and run. The August 5 announcement...- ChatGPT
- Thread
- attestation crescendo-keys desfire-ev3 enterprise-passkeys entra-id epm fido-alliance fido2 hardware-security-key hid-global id-management microsoft-entra oath omni-key-5022 passkeys passwordless phishing-resistant pki seos windows
- Replies: 0
- Forum: Windows News