What you need to know
- Microsoft partnered with several PC manufacturers to create Secured-core PCs.
- These PCs protect data and devices at a hardware, firmware, and software level.
- Dell, Dynabook, HP, Lenovo, Panasonic, and Microsoft all have devices that are Secured-core PCs.
As attackers use more advanced ways to gather data and steal identities, PC-makers have to utilize new ways to improve security. Microsoft partnered with several PC manufacturers to create devices that called "Secured-core PCs." These devices use security measures at the hardware, firmware, and software levels to protect data and user identities. Dell, Dynabook, HP, Lenovo, Panasonic, and Microsoft have devices that are Secured-core PCs.
Secured-core PCs are aimed at users that have highly sensitive data, such as people working in healthcare, financial services or for the government. Though, the devices are generally available to consumers, so anyone who wants to have extra security could utilize the options on their Secured-core PC. For example, the Lenovo ThinkPad X1 Yoga 4th Gen and Lenovo ThinkPad X1 Carbon 7th Gen are both Secured-core PCs.
Attackers often utilize firmware to attempt to access PCs. Firmware has the ability to make changes to devices that even software and the operating system of a device can't. As a result, attackers that utilize firmware can bypass many security measures and gain access to sensitive data. Attacks that target firmware can undermine secure boot and other security measures. Endpoint protection and detection solutions don't have full visibility and access to the firmware layer, which means that attacks can circumvent these as well.
To combat firmware level attacks, Windows Defender now implements System Guard Secure Launch. Supporting this is a requirement for Secured-Core PCs and uses new hardware capabilities from AMD, Intel, and Qualcomm. Microsoft explains that System Guard uses capabilities that are built into silicon from major chip manufacturers,
System Guard uses the Dynamic Root of Trust for Measurement (DRTM) capabilities that are built into the latest silicon from AMD, Intel, and Qualcomm to enable the system to leverage firmware to start the hardware and then shortly after re-initialize the system into a trusted state by using the OS boot loader and processor capabilities to send the system down a well-known and verifiable code path. This mechanism helps limit the trust assigned to firmware thereby providing a powerful mitigation against cutting-edge, targeted threats against firmware. This capability also helps to protect the integrity of the virtualization-based security (VBS) functionality implemented by the hypervisor from firmware compromise.
Secured-core PCs leverage a number of technologies to isolate hardware, detect attacks using software, and protect devices from attacks that utilize firmware. A page from Microsoft dedicated to Secured-core PCs explains each level of security and includes a helpful video summary for anyone looking to utilize the security of these devices. It also includes a full list of Secured-core PCs.
The trusty powerful workhorse
The Carbon doesn't scream about specifications unless you bring up portability and LTE in the conversation. Still, it's a powerful notebook that can be relied upon to handle video editing and other intensive applications. It's now available with a 10th Gen Intel processor.
We may earn a commission for purchases using our links. Learn more.
Benchmarking the new Surface Book 3 15 with GTX 1660 Ti and 10th Gen i7
Although it's too early for a review, here are some initial benchmarks from the new Surface Book 3 15-inch with a Core i7 and NVIDIA GeForce 1660 Ti (Max-Q) and how it compares to Surface Book 2 and other premium laptops. Spoiler: While the CPU is just OK, that 1660 Ti definitely bumps up the Book 3's potential.
Review: Sabrent's Rocket Q SSDs are fast, well-priced and go up to 4TB
Sabrent has a new SSD range available in the form of the Rocket Q. These new NVMe SSDs use QLC NAND, but offer impressive speeds and storage capacities at affordable prices. Check our full review to see how they compare against other SSDs.
Review: How do I go back to Wi-Fi 5 after using TP-Link's Archer AX6000?
TP-Link's Archer AX6000 is an 802.11ax router designed to take your network into the future. However, it might not be exactly what you're looking for due to its high-end specs and relatively high price. We explain in this review.
Best Dell XPS 13 2-in-1 Docks and Docking Stations in 2019
The Dell XPS 13 2-in-1 is a fantastic ultrabook, but what if you want to use it desktop-style? You're going to want to get yourself a laptop dock for that. Here are some of our favorites.