A terse entry in Microsoft’s Security Update Guide has drawn renewed attention to the fragile boundary between the Trusted Platform Module (TPM) ecosystem and the isolated “trustlet” processes that help Windows implement Virtualization‑Based Security. The item—tracked as CVE‑2026‑20829—was...
In this final video in the Windows 10 Isolated User mode series Dave takes us through several engineering aspects associated with trustlets. First he describes how lsass.exe (the Local Security Authority Subsystem Service responsible for enforcing security on Windows) now can have a companion...
community
credential guard
dave probert
engineering
features
innovation
isolated user mode
kernel security
lsaiso.exe
lsass.exe
operating system
process
secure system
security
technology
trustlets
user mode
video series
windows 10
windows update