FEITIAN BioPass K27 USB Security Key – Two Factor Authenticator – USB-A with FIDO U2F + FIDO2 – Biometric Fingerprinting – Help Prevent Account Takeovers with Multi-Factor Authentication

http://i.securitythinkingcap.com/T7FSVR

Day 6 - SC-900 - Authentication Methods in Azure AD(AAD)

Passwords: -Weakest of authentication methods in AAD -Subject to classic exploitation techniques such as password spraying & bruteforce attacks -Still subject to exploitation even with enforced complexity -Can be combined with other non-controlled application methods to bolster it, such as: -SMS: -SMS is considered less than secure in practical application. -Voice Call

-Can be combined with controlled application methods to bolster it, such as: -Microsoft AuthN App: -Can be used as a primary form of AuthN to sign into an AAD account -Can be used as additional verification option for self-service password reset(SSPR) or AAD multi-factor authentication(MFA) events. -Users must download the phone app & register their account to use this application.

-Open Authentication(OATH) Token One-Time Password(OTP) -Open standard that specifies how time-based OTP(TOTP) codes are generated -Software Token: -AAD generates a secret key, or seed, that is input into the app & used to generate each OTP -Typically an application -Hardware Token: -Small hardware devices that look like a key fob -Secret key/seed programmed into the token -Displays a code that refreshes every 30 or 60 seconds

Passwordless: -Windows Hello -AuthN feature built into Windows 10 -Replaces passwords with strong two-factor AuthN(2FA) on PCs & Mobile Devices -Allows userse to AuthN to: -Microsoft Account -AD Account -AAD Account -Identity Provider Services -Relying party services that support FIDO2 AuthN -Windows Hello is for personal devices. -Uses a PIN or biometric gesture. -Windows Hello for Business is for business owned devices -Uses Key-based or cert-based AuthN -Solves the following problems: -Password reuse -Exposure of symmetric network credentials during/after a server breach -Replay attacks -Password exposure due to phishing

-Microsoft Authenticator -Fast Identity Online(FIDO)2 Security Key: -Uses public-key (Asymmetric) cryptography for user AuthN -User has a physical device(USB or NFC) -AuthN Sequence: -Provide Username > Cryptographic Challenge > Use FIDO2 key to sign > service verifies response > Access is granted

The Benefits of Biometric Authentication

Biometric authentication is gaining popularity these days. It is used in computer science as a form of identification and access control. Essentially, this is a method of proving that you are who you say you are with your body, not by remembering a set of numbers or a word. With biometric solutions, companies, governments, and other services are able to safely provide access to systems with more secure authentication than ever before. Some types of biometric authentication tools available include facial and voice recognition, fingerprint scanners, iris (eye) scanners, and hand geometry

Using the above-mentioned technologies, you can deploy a secure access model and enjoy enhanced security. You can already imagine the benefits of switching to this type of authentication for your secure data and areas.

One of the advantages of a switching to FIDO2 biometric authentication, like a fingerprint scanner, is improved security. Biometric authentication provides a secure and uncrackable access control solution that does not expose your information to cybercriminals. No one can leave their keys somewhere or tell someone else their password.

Another benefit of biometric authentication is the higher accuracy that it provides. Fingerprint scanners are one of the world’s most sophisticated biometric modalities. They provide almost 100 percent of accuracy during authentication.

You will also gain faster access when you start using biometric authentication in your business. Typing in a secure password takes a long time, if you even remember it. If you do not remember the password, it takes minutes or longer to retrieve it and get access again. Compared to this, a fingerprint scanner can lock and unlock your workstation or device quickly.

Biometric authentication also provides greater convenience. You will no longer have to remember complex passwords when you switch to this technology. Security experts tell us that you should never use the same password for different systems, meaning that you have a lot to remember. Fingerprint scanners increase security without overburdening you with numerous credentials to keep in mind.

For more information on the benefits of biometric authentication, visit our website at https://loginid.io/

Are you interested in reviewing FEITIAN's FIDO? Maybe you have your own blog, website, or even youtube channel? Or you have rich experience in the technical field, authoritative influence, and your own opinions？ Please contact me directly.

via

Are you looking for safety and security resources? FIDO2 is an open authentication standard. FIDO2 is the industry's first set of multi-protocol. This is a safe option for your security users we give good service for security.

It is a Biometric Technology. Biometric Technology makes Bio Pass FIDO2 security key one of the security tokens. The fingerprint module prevents any misuses of the token form people other than the authorized user, and losing the key will cause no security risk at all. To take more advantages to visit our website: https://www.ftsafe.com/               

FIDO Authentication Market: Global Forecast Over 2031

Transparency Market Research delivers key insights on the global FIDO authentication market. In terms of revenue, the global FIDO authentication market is estimated to expand at a CAGR of 10.7% during the forecast period, owing to numerous factors, regarding which TMR offers thorough insights and forecasts in its report on the global FIDO authentication market.

FIDO authentication is a set of technology-agnostic security specifications for strong authentication. It significantly supports multifactor authentication (MFA) and public key cryptography, storing personal identification information (PII), such as biometric authentication, locally on the customer’s device in order to protect it. FIDO authentication helps enterprises to alleviate critical risks of a data breach arising due to password mismanagement and weak passwords. It also allows organizations to save on costs related to device provisioning, customer support, and password reset, while delivering a seamless user experience. FIDO authentication standards offer a series of open and scalable specifications such as FIDO2, Universal Second Factor (U2F), and Universal Authentication (UAF), providing more secure and simpler authentication experiences. FIDO authentication standards make user identification easier with multi-factor authentication (MFA), biometric systems, and other alternatives across applications and websites.

Rise in need for advanced security solutions and increase in adoption of web and mobile applications that help in reducing cyber-attack exposure are creating potential demand for FIDO authentication. Moreover, several benefits of FIDO authentication such as ease of use, cost reduction, standardization, and strong authentication are propelling their adoption across businesses.

Get a PDF brochure for Industrial Insights and business Intelligence @ https://www.transparencymarketresearch.com/sample/sample.php?flag=B&rep_id=80782

FIDO Authentication Market: Dynamics

FIDO authentication services engage in the practice of shielding organizations and their assets from cyber threats and identity fraud, which might impede the stability of the business process. It employs numerous authentication techniques to authorize and validate user credentials in real-time.

FIDO authentication services is a sub-segment of identity and access management that can be defined as the management of individual identities, their authorization, and providing access based on predefined rules. Organizations struggled to meet compliance demands, resulting in deploying solutions limited to few applications and systems.

Enterprises have been adopting FIDO authentication services to alleviate these threats in the last few years, which helps synchronize identities between directories, password, compliance management, and access authentication, delivering access to applications and data of sensitive companies on users preferred mobile devices. These FIDO authentication services not only offer a highly secure environment, but they are cost-effective and have operational efficiency and management control. This is projected to propel the FIDO authentication market during the forecast period.

FIDO standards offer a series of scalable specifications such as FIDO2, Universal Second Factor (U2F), and Universal Authentication Framework (UAF), enabling a stronger, simpler, and more secure user authentication experience. For instance, The Alliance added the FIDO Cooperation and Liaison Program, which invites industry associations worldwide for implementation of FIDO standards.

Furthermore, in May 2020, FIDO Alliance launched LoginWithFIDO, a new website to educate service providers and consumers on the benefits of FIDO simpler, stronger authentication.

In April 2018, The W3C launched FIDO2, the web authentication JavaScript API standard and FIDO’s corresponding Client to Authentication Protocol. Major players of web browsers such as Microsoft Edge, Mozilla Firefox, Chrome, and Google have also implemented the standards on Windows 10, Android, and related Microsoft technologies to have built-in support for FIDO authentication.

Thus, government agencies pushing for standardization of data security protocols is anticipated to propel the FIDO authentication market significantly during the forecast period.

Get COVID-19 Analysis @ https://www.transparencymarketresearch.com/sample/sample.php?flag=covid19&rep_id=80782

FIDO Authentication Market: Prominent Regions

North America is significant market for FIDO authentication. The region is home to a considerable number of SMEs and large enterprises and hence, the average deployment of FIDO authentication in enterprises was highest in the region. North America accounted for a prominent share of cyber security spending in 2020. This growing trend of having a strong focus on cyber security by small and medium, and large organizations in the region, clearly shows concerns about data protection. In North America, the U.S. is anticipated to hold a significant share in the market, due to the rising number of cyber-thefts and data breaches as well as strong presence of FIDO authentication vendors across the country, which, in turn, is expected to boost the FIDO authentication market in North America.

However, the FIDO authentication market in Asia Pacific is projected to expand at a robust pace during the forecast period. In the region, large enterprises are expected to adopt these solutions at a higher rate. Furthermore, governments in APAC countries are focused on the adoption of authentication across verticals. Asia Pacific has emerging economies that are emphasizing on enhancing cybersecurity with passwordless authentication. This, in turn, is anticipated to boost the FIDO authentication market during the forecast period.

FIDO Authentication Market: Key Players

Key players operating in the global FIDO Authentication market are Aware, Inc., Cardcontact Systems GmbH, Daon, Futurex, Huawei Device Co., Ltd., HYPR Group, LoginID, Movenda, OneSpan, RSA Security LLC, Swift, Thales Security, Ultra Electronics, Utimaco GmbH, and Yubico.

Inquiry Before Buying: https://www.transparencymarketresearch.com/sample/sample.php?flag=EB&rep_id=80782

Global FIDO Authentication Market: Segmentation

FIDO Authentication Market, by Component

FIDO     Authentication Devices

FIDO     Authentication SDKs

Support     Services

FIDO Authentication Market, by Application

Payment     Processing

PKI/Credential     Management

Database     Encryption

Application     Level Encryption

Others

FIDO Authentication Market, by Vertical

Banking     and Financial Services

Government

Technology     and Communication

Industrial     and Manufacturing

Energy     and Utility

Retail     and Consumer Products

Healthcare     & Life sciences

Others

TMR Latest News Publication:

Cyber Security as a Service Market – The threat quotient over the internet has increased phenomenally over the years. According to a survey by RiskBased, data breaches exposed nearly 4.1 bn records only in the first 6 months of 2019. A study by Ponemon Institute stated that security breaches have expanded by 11 percent since 2018 and 67 percent since 2014. These statistics highlight the necessity to keep cybersecurity measures in place for avoiding any untoward cases of breaching. Such advancements lead to an increase in the growth rate of cyber security as a service market.

About Us

Transparency Market Research is a global market intelligence company, providing global business information reports and services. Our exclusive blend of quantitative forecasting and trends analysis provides forward-looking insight for thousands of decision makers. Our experienced team of Analysts, Researchers, and Consultants, use proprietary data sources and various tools and techniques to gather, and analyse information. Now avail flexible Research Subscriptions, and access Research multi-format through downloadable databooks, infographics, charts, interactive playbook for data visualization and full reports through MarketNgage, the unified market intelligence engine. Sign Up for a 7 day free trial!

Contact

Rohit Bhisey

Transparency Market Research

USA – Canada Toll Free: 866-552-3453

Email: [email protected]

Blog: https://tmrblog.com/

Follow Us: Twitter | LinkedIn

Unfortunately, it is far too common for people to click on fake links and enter their credentials in seemingly genuine-looking websites.

Therefore, now is the time to go Passwordless with an authenticator app or FIDO2 (Fast Identity Online) security keys that eliminates the use of those credentials. The attacker can’t mount a harvesting attack on a website if there is no password field. It is a secure method where users can log in to their e-mail, applications, and systems using face ID, fingerprint, biometrics, push notifications without typing or remembering their passwords.

FEITIAN BioPass K26 Plus – USB Security Key – Two Factor Authenticator – USB-C with FIDO U2F + FIDO2, PIV – Biometric Fingerprinting – Help Prevent Account Takeovers with Multi-Factor Authentication

http://i.securitythinkingcap.com/T57sCN

Benefits Of Using FIDO2 Biometric Authentication Technology In Your Business

FIDO2 biometric authentication is something that you should definitely consider when it comes to improving the technology of your business systems. FIDO2 makes it possible for users to leverage common devices to easily authenticate to online services in both mobile and desktop environments. The FIDO2 specifications are the World Wide Web Consortium’s (W3C) Web Authentication (WebAuthn) specification and FIDO Alliance’s corresponding Client-to-Authenticator Protocol (CTAP).

So, how can you benefit from using FIDO2 authentication and digital identity verification technologies in your business? By leveraging these technologies, you will improve the security of your business systems. FIDO2 cryptographic login credentials are unique across every website, they never leave the user’s device and they are never stored on a server. This security model eliminates the risks of phishing, all forms of password theft as well as replay attacks.

You will also like the convenience of FIDO2 biometric authentication technology. Users can unlock cryptographic login credentials with simple built-in methods like fingerprint readers or cameras on their devices, or by leveraging easy-to-use FIDO security keys. Consumers are free to choose the device that best fits their needs.

Another thing that you will love about FIDO2 biometric authentication is the privacy. Since FIDO cryptographic keys are unique for each internet site, it means that they cannot be used to track users across sites. Moreover, biometric data, when used, never leaves the user’s device.

Scalability is another important benefit of FIDO2 biometric authentication. Websites can enable FIDO2 through a simple JavaScript API call that is supported across leading browsers and platforms on billions of devices consumers use every day. This technology provides scalability that you cannot achieve when using passwords.

For more information on the benefits of using FIDO2 biometric authentication technology in your business, visit our website at https://loginid.io/

FEITIAN BioPass K26 USB Security Key – Two Factor Authenticator – USB-C with FIDO U2F + FIDO2 – Biometric Fingerprinting – Help Prevent Account Takeovers with Multi-Factor Authentication

http://i.securitythinkingcap.com/T4LX2n

A Look The Benefits Of FIDO2 Biometric Authentication

When it comes to the things you can do in order to improve the security of your business systems and data, FIDO2 biometric authentication is among the things you should consider. FIDO in full stands for Fast Identity Online Authentication, and it is a set of open technical specifications that define user authentication mechanisms to reduce the reliance on passwords. It replaces password-only based authentication with fast and secure authentication techniques across applications.

Since passwords are a headache, a lot of businesses are moving towards digital identity verification these days. Remembering multiple passwords for all online accounts from social accounts to banking accounts can be very difficult. Even though there are password managers, those are vulnerable to attacks, and saving your passwords somewhere else is a security risk as well.

FIDO biometric authentication is a passwordless authentication technique that is offered in web and mobile applications for a fast as well as secure authentication. This technology eliminates the need to remember multiple passwords or storing passwords in third-party services. And because of that, it allows to reduce possible data breaches and other security concerns that may arise as a result of using passwords.

FIDO2 authentication replaces the use of password with public key cryptography. Public key cryptography makes use of a private key which is a secret on the user’s device and a public key which is stored on the FIDO server. Authentication is completed on the user’s device by signing the server provided challenge.

FIDO2 authentication is available as a standard web API that is built into W3-compliant browsers. It makes it possible for you to log into online accounts using devices that supports biometric authentication (fingerprint or faceID), FIDO security keys, as well as biometric devices.

For more information on FIDO2 biometric authentication, visit our website at https://loginid.io/  

Getting a biometric security key right | Yubico

Today, we are excited to share some updates regarding the next highly-anticipated members of our YubiKey family: the upcoming YubiKey Bio in both USB-A and USB-C form factors. The YubiKey Bio will be the first product to introduce biometric capabilities (in addition to PIN) to our portfolio of YubiKeys.  Yubico has been considering adding biometrics to our line of security keys for quite some time, and while biometric authentication seems straightforward at first, there is quite a lot of engineering to get it right and meet the standards that people have grown to expect from a YubiKey. A great piece of hardware does not live in isolation; it needs to work with a larger ecosystem to be usable. When we launch new products, we set the highest bar for security, usability, durability, and design, and we do everything in our power to not compromise on any of these traits. The FIDO-enabled YubiKey Bio is currently in private preview, being tested and reviewed by many of our enterprise customers and technology partners. We have received excellent feedback on our product designs, and now our goal is to further ensure that the overall user experience is smooth with a wide range of platforms and FIDO-based use cases.  We welcome you to sign up here to receive updates on the YubiKey Bio, including those about general availability. Below, we are sharing a short video demonstrating how the YubiKey Bio works, sharing some behind-the-scenes information on the engineering process, and diving into some of the considerations when using a biometric authenticator such as the YubiKey Bio. 

Why biometrics?

The concept of using biometric and fingerprint sensors for user verification has been around for decades. However, wider user acceptance was achieved with general availability and accessibility of fingerprint sensors in smartphones. It is end-user convenience that has been driving this adoption, not necessarily security. The challenge with biometric authenticators has been to get cross-platform support, standardization, and a good user experience much like what already exists with biometric sensors that are built into laptops, tablets, and mobile phones. Fortunately, FIDO2 has helped this cause by expanding from user touch to also support biometrics, including fingerprints, facial recognition, etc. Yubico continues to work with browser platforms and the FIDO ecosystem to optimize the user login flow, but there is still work to do for a seamless experience for both consumers and enterprises, consistently across different end user devices.

Usability considerations for biometrics

On smartphones, fingerprint authentication is an integral part of the system. A screen and well-defined user interface makes it fairly easy and intuitive to set up a fingerprint on a mobile device and manage lockouts. The story is different for a small, portable security key like the YubiKey that needs to work across platforms and services. As opposed to a correct PIN, a correct finger cannot always be read by fingerprint sensors. Variables in skin texture, such as moisture or temperature, can introduce scanning issues. To address this, the YubiKey Bio will default to biometrics, but will allow the PIN to be used if there are issues. Biometric authentication can be a convenient alternative to typing a PIN, especially when the user needs to authenticate to a system multiple times per day. However, with FIDO, the leading online services do not always require daily use of either a password, PIN, or a security key, which already adds improved convenience for users. For example, after registering a YubiKey to services and applications, a user may only need to authenticate once to make the phone or computer a trusted device, and may only need it again for new devices or risky operations.  This unmatched user experience for strong authentication is a core reason the FIDO standards are winning mass adoption. Users should keep this in mind when considering the YubiKey Bio for the purpose of simplicity or ease of use; for non-daily use it may not have as great of an impact on convenience compared to use cases where authentication is more frequent.

Security and privacy features of the YubiKey Bio

Yubico will never compromise on security, and it’s imperative to protect the privacy of our users. Biometric sensor technology has come a long way in recent years. However, there are still security tradeoffs. Artificial fingerprints (spoofs) can still be used to impersonate a user and we felt that it was important enough to consider that, in addition to other biometric-specific threats, as part of our threat models when we began engineering the YubiKey Bio. For example, in 2015, the Office of Personnel Management (OPM) breach included fingerprints for individuals that had applied for government clearances and had access to national secrets. A leak of this caliber leads to legitimate concerns that a sophisticated adversary may use fingerprint spoofs to physically attack a user’s biometric device.  Threats against biometric systems also include how the biometric is processed. Security weaknesses in biometric components could undermine the security of the system. To reduce the potential impact of a security flaw, we separated the biometric subsystem from the key’s core functionality. Furthermore, we store the enrolled fingerprint templates and perform biometric matching in a dedicated secure element to protect it from both digital and physical attacks. We then encrypt the communication between this biometric secure element and the one we use for the core YubiKey software to mitigate eavesdropping and replay attacks. It’s important to note that all fingerprint sensors we tested were susceptible to high quality spoofed fingerprints created with a cooperative enrolled user, including those in popular phones and laptops, and the one in the YubiKey Bio. We believe with sufficient skill and practice that this can be done even with latent prints without the cooperation of the enrolled user. An example of this was demonstrated at the Chaos Communication Congress by using photographs of hands to create a spoof of the enrolled user’s fingerprints. However, the vast majority of potential attackers are not physically near to their victims and do not have physical access to their devices. Even so, to make fingerprint spoofing harder, the Yubico team did extensive research and tested many different fingerprint sensors. The results informed our components selection, tuning, and development for the YubiKey Bio. We believe that our device is tuned well for usability and spoof rejection compared to similar devices on the market. Because watching a user type their PIN, replicating fingerprints, or stealing YubiKeys are all attacks that fall into the domain of patient, skilled, physically-present attackers, some users may still wish to choose a device — like the YubiKey Bio — that allows for more convenience with the choice of using a PIN or fingerprint. We believe that offering the best biometric security key on the market as an option to those users makes sense.

FIDO and WebAuthn biometric experiences

The YubiKey Bio will protect users by requiring an enrolled finger match (or optionally a PIN + touch for some FIDO2 use cases) for all uses. It will work everywhere that FIDO U2F, FIDO2, or WebAuthn is supported today. Like the YubiKey 5 Series, the YubiKey Bio enables a passwordless experience when FIDO2 is supported by the service, and where a security key resident credential is used instead of a username and password. Unlike the YubiKey 5 Series, users can achieve these FIDO-based experiences using just a fingerprint match instead of always requiring a PIN + touch. Today, a few services support this enhanced experience, but we expect the number will grow over time. In the demo video above, we chose to use the passwordless option of our own demo site because it was the simplest way to show this experience without being distracted by third party service and account options.

What makes a YubiKey a YubiKey? 

Since the first YubiKey was launched in 2008, and over the years, our customers have appreciated the core values that represent a YubiKey: usability, security, durability, and in a sleek form factor. The YubiKey Bio follows these same design principles. To stay up to date on YubiKey Bio general availability, and to apply for the closed preview program, sign up here. To speak with a Yubico sales representative about whether the upcoming YubiKey Bio may be right for your organization, contact us here.  By Christopher Harrell at 2020-11-10 17:04:54 Source Yubico:

Read the full article

via

Apple is bringing Face ID and Touch ID to the web with Safari 14

Apple’s Face ID and Touch ID have made it easier for users to log into their mobile devices like iPhones and iPads and on some Macs offering the Touch ID button. Now Apple is bringing Face ID and Touch ID to the web. At the company’s virtual Worldwide Developers Conference this week, Apple introduced a way for web developers to add support for Face ID and Touch ID to their websites, allowing Safari users to log in without having to enter their username and password.

In a WWDC session aimed at web developers, the company showed off the new functionality, which Apple touted would provide a “frictionless experience” for users.

Similar to how Face ID and Touch ID work today in iOS apps, web developers who choose to implement the new technology could prompt their users to choose a biometric authentication method the next time they visit their website.

Great news! Apple expands support for #FIDO Authentication with Safari 14 (MacOS/iOS)! Websites can use Touch ID / Face ID for secure and frictionless web logins via #WebAuthn API. Great video on how websites can get started: https://t.co/NZ92tEhFaL

— The FIDO Alliance (@FIDOAlliance) June 24, 2020

The technology was built via the Web Authentication (WebAuthn) API, which allows developers to build authentication via the FIDO2 specification developed by the FIDO Alliance. It will be made available starting with Safari 14 for macOS and iOS, the organization said.

As CNET explains, Apple isn’t the first to use the browser technology — it’s already available in Firefox, Chrome and Microsoft Edge, for example.

Apple’s adoption, however, could push forward the larger biometrics movement. This is due, in part, to Apple’s way of making complicated technology consumer-friendly and taking on the work of user education. Apple also has a sizable community of developers who get excited to roll out Apple’s latest technology.

The new system will be, by default, multifactor in nature.

Apple’s platform authenticator uses the secure enclave of the iPhone or iPad to provide the private keys, and guarantees they can’t leave the device. It also verifies the user by either their fingerprint or facial recognition. That makes it multifactor, as it combines something you have — the iPhone — with something you are — your biometrics information.

A report by Biometric Update also noted the WWDC session revealed Apple built its own attestation service, which is an optional service for those with higher security needs — like a bank. Because this technology can sometimes be used to violate privacy, Apple built its own version where it generates a unique attestation certificate for each credential. This prevents websites from tracking users across the web. This service isn’t immediately available, but will be soon.

Apple joined the FiDO Alliance earlier this year, signaling its intention to work toward a way to replace passwords with trusted devices and biometrics. It has also patented a way to use Face ID on a Mac, but this hasn’t launched.

What’s new for IT pros in Windows 10 1903

What’s new for IT pros in Windows 10 1903.

Intelligent security

The biggest concern for most companies today—and their IT departments—is security. With cyberthreats rapidly increasing every day, organizations need intelligent security to defend and protect their environments. Windows 10 comes with security built-in, and it leverages the cloud to coordinate defenses across email, data, and devices for end-to-end protection using the Microsoft Graph. Here are some of the new intelligent security capabilities included in Windows 10, version 1903: Microsoft Defender Advanced Threat Protection (ATP): Attack surface area reduction – IT admins can configure devices with advanced web protection that enables them to define allow and deny lists for specific URL’s and IP addresses.Next generation protection – Controls have been extended to protection from ransomware, credential misuse, and attacks that are transmitted through removable storage. Integrity enforcement capabilities – Enable remote runtime attestation of the Windows 10 platform.Tamper-proofing capabilities – Use virtualization-based security to isolate critical ATP security capabilities away from the OS and attackers. Platform support – Endpoint Detection (EDR) and Endpoint Protection Platform (EPP) capabilities now support Windows 7 and 8.1 environments.Advanced machine learning – Improved with advanced machine learning and AI models that enable it to protect against apex attackers using innovative vulnerability exploit techniques, tools and malware.Emergency outbreak protection – Provides emergency outbreak protection which will automatically update devices with new intelligence when a new outbreak has been detected.Certified ISO 27001 compliance – Ensures that the cloud service has analyzed for threats, vulnerabilities and impacts, and that risk management and security controls are in place.Geolocation support – Support geolocation and sovereignty of sample data as well as configurable retention policies. Threat Protection: Windows Sandbox – Isolated desktop environment where you can run untrusted software without the fear of lasting impact to your device.Microphone privacy settings – A microphone icon appears in the notification area letting you see which apps are using your microphone.Windows Defender Application Guard enhancements – Standalone users can install and configure their Windows Defender Application Guard settings without needing to change Registry key settings. Enterprise users can check their settings to see what their administrators have configured for their machines to better understand the behavior. Identity Protection: Windows Hello FIDO2 certification – Windows Hello is now a FIDO2 Certified authenticator and enables password-less login for websites supporting FIDO2 authentication, such as Microsoft account and Azure Active Directory (AD).Streamlined Windows Hello PIN reset experience, – Microsoft account users have a revamped Windows Hello PIN reset experience with the same look and feel as signing in on the web.Sign-in with Password-less Microsoft accounts – Sign in to Windows 10 with a phone number., then use Windows Hello for an even easier sign-in experience! iRemote Desktop with Biometrics – Azure Active Directory and Active Directory users using Windows Hello for Business can use biometrics to authenticate to a remote desktop session. Security management: Windows Defender Firewall: Windows Subsystem for Linux (WSL), which lets you add rules for WSL process, just like for Windows processes.Windows Security app improvements now include Protection history, including detailed and easier to understand information about threats and available actions, Controlled Folder Access blocks are now in the Protection history, Windows Defender Offline Scanning tool actions, and any pending recommendations.Tamper Protection lets you prevent others from tampering with important security features.

Simplified updates

With Windows 10, version 1903, you’ll see the following improvements to help you to streamline deployments and update management: Delivery Optimization – Improved Peer Efficiency for enterprises and educational institutions with complex networks (via a set of new policies). This now supports Office 365 ProPlus updates and Microsoft Intune content; System Center Configuration Manager content will be coming soon.Reserved storage – Reserved storage sets aside disk space to be used by updates, apps, temporary files, and system caches, improving the day-to-day function of your PC by ensuring that critical OS functions always have access to disk space. This feature will be enabled automatically on new PCs with Windows 10, version 1903 pre-installed as well as clean installs of Windows 10, version 1903. (It will not be enabled when updating from a previous version of Windows 10.)Automatic Restart Sign-on (ARSO) – For Azure Active Directory-joined devices, Windows will automatically log on as the user and lock the device to complete the update, ensuring that when the user returns and unlocks the device, the update will be completed.Windows Update for Business – There will now be a single, common start date for phased deployments (no more SAC-T designation). In addition, there will be a new notification and reboot scheduling experience for end users, the ability to enforce update installation and reboot deadlines, and the ability to provide end user control over reboots for a specific time period.Update rollback improvements – When a device is unable to start properly after installing a driver or monthly quality update, Windows will automatically uninstall the update to return the device to a normally operating state.Pause updates – Users of all editions of Windows 10, including Windows 10 Home, can pause updates for both feature and monthly updates.Intelligent active hours – Users now have the option to let Windows Update intelligently adjust active hours based on their device-specific usage patterns.Improved update orchestration – Windows 10, version 1903 offers improved system performance by intelligently coordinating Windows updates and Microsoft Store updates so they occur when users are away from their devices to minimize disruptions.Improved update notifications – When there’s an update requiring a device restart, users will see a colored dot on the Power button in the Start menu and on the Windows icon in the taskbar.SetupDiag – Use this command-line tool to troubleshoot failed feature updates.

Flexible management

To deliver that secure and productive experience that users and your organization are expecting, it's critical to use modern management practices. Here is what Windows 10, version 1903 has to offer around delivering enterprise-ready devices and simplifying the ongoing management of those devices. Deliver enterprise-ready devices with Windows Autopilot – Enrollment Status Page (ESP) enhancements, which include tracking Win32 apps delivered via Intune Management Extensions. You can also now choose which apps to block during enrollment through Intune. In addition, Windows Autopilot functional and critical updates will begin downloading automatically during the out of box experience (OOBE). Cortana voiceover is now disabled by default for Windows 10 Pro and above SKUs in the OOBE. And, with Windows Autopilot white glove deployment, partners or IT staff can pre-provision Windows 10 PCs to be fully configured and business-ready before they are delivered to the Check out the new Microsoft Mechanics video to learn more about the new white glove deployment and these other new Windows Autopilot features.Mobile Device Management policies – Windows 10, version 1903 offers new Group Policies and mobile device management (MDM) policies for managing Microsoft Edge. You can silently enable BitLocker for standard Azure Active Directory-joined users. You can also more easily manage the entire Microsoft 365 experience for users with the Microsoft 365 Admin Center.Intune Security Baselines (Preview) – Now includes many settings supported by Intune that you can use to help secure and protect your users and devices. You can automatically set these settings to values recommended by security teams.

Enhanced productivity

Ultimately, Windows 10 is about providing a great, productive experience for users. Here are some of the key productivity enhancements in this new feature update: Work smarter – Windows Shell now lets you search for Linux files contained in a WSL distro. In addition, top apps and recent files will display when you click in the Search bar. We’ve also separated Search and Cortana allowing Cortana to act as more of a digital assistant while using Windows Search for searching for file, pics, docs, etc.. The new Chrome extension adds Google Chrome activity to the Timeline view.Empower workstyles – New accessibility features include Narrator improvements with more voices and reading controls, as well as ease of access improvements such as 11 new mouse pointer sizes. Windows 10, version 1903 also includes Narrator QuickStart, which is a short tutorial for new users. In addition, you can tap WINDOWS + . to access new kaomojis and emojis, making finding the right one a keyword away.Windows Virtual Desktop – Available as a public preview, Windows Virtual Desktop allows you to deliver a multi-session Windows 10 experience, optimizations for Office 365 ProPlus, and support for Windows Server Remote Desktop Services (RDS) desktops and apps. Read the full article