- Microsoft is going to bolster Windows 11's security levels
- A 'Windows Baseline Security Mode' will mean that only properly signed apps and drivers will be allowed to run
- A permissions system for apps will be enacted in a similar vein to what we see on smartphones now
Windows 11 is set to get tighter levels of security, with Microsoft proposing a stronger baseline level of defenses, and an app-by-app permission system of 'allow access' prompts that'll be familiar to users of the best Android phones and best iPhones.
Windows Latest highlighted that Microsoft just published a blog post discussing the ways in which it's going to toughen up Windows 11 security-wise.
Microsoft describes the issue thus: "[Windows 11] users are increasingly seeing apps override their settings, install additional software or alter core Windows experiences without their awareness or consent.
"And your feedback is clear: Windows must both remain an open platform and be secure by default – protecting the integrity of your experience regardless of the apps installed. Our developers and ecosystem partners echo this need."
There's a line between convenience and security here, which Microsoft is effectively looking to shift a bit towards the latter. While it's all well and good to not get hit by security prompts, and be able to install whatever you want (from wherever) without interference from the OS, the software giant clearly feels that it's erred too far towards this side of the equation, and wants to rebalance in favor of tighter defenses.
One of the central pillars of what Microsoft is actioning is a 'Windows Baseline Security Mode' whereby various safeguards will be enabled by default. The upshot is that Windows 11 will only allow properly signed (certified by Microsoft) apps and drivers to run.
There will be ways to circumvent this protection – should you have legacy apps, for example, that aren't signed, and you know they're safe. But by default, Windows 11 won't allow for using unsigned apps to better protect users.
The other big move here is improving user transparency and consent, meaning app permissions. As noted at the outset, Microsoft is gravitating towards a smartphone model of security whereby apps must get permission before accessing your camera, or microphone, for example – you must actively 'allow' this. The idea is to stop apps sneakily gaining access to your webcam or other hardware.
Similarly, if an app is trying to stealthily install other software – something malicious, or unwanted – user permission will be required.
Analysis: paving the way for AI agents
While this isn't a concrete vision of the future of security in Windows 11, the blog post makes it sound like all this is happening, albeit that it'll take time, and will "roll out through a phased approach". Microsoft also stresses that it'll be taking feedback into account as it goes along in order to refine these concepts.
While more permission prompts on the Windows 11 desktop may sound a bit tiresome on the face of it, a tighter level of security is a good idea in many ways. Especially considering that, with Windows being the most prevalent desktop OS by far, users are targeted by a lot of the malware out there. (Don't make the mistake of thinking Macs are invulnerable to malware, mind you, especially not these days).
There's something else going on as an undercurrent here, though, in my opinion, which is that this is all about building up trust in Windows 11 ahead of the release of AI agents in the operating system.
Arguably, trust in Windows 11 is at an all-time low as more and more bugs creep into the operating system – and Microsoft has promised to do better in this respect already (as well as with addressing sluggish performance in some areas of the OS).
How can Microsoft expect people to let AI agents loose on their files, and trust these entities if Windows 11 can't even be kept remotely bug-free with basic parts of the interface? This is a major problem, one that Microsoft must see, and this security work is likely a part of addressing these trust issues, and restoring Windows 11's reputation so that it's seen as a more robust and reliable platform.
Notably, Microsoft mentions AI agents in the blog post, observing that: "Apps and AI agents will also be expected to meet higher transparency standards, giving both users and IT administrators better visibility into their behaviors. These updates raise the bar for security and privacy on Windows, while giving you more control and confidence in how your system and data are accessed."
I think the mentioned reputational recovery is vital work to ensure that Windows 11 stands on a good footing going forward, and at least Microsoft appears to be recognizing this – and taking it very seriously.
Ultimately, how this pans out will be in the implementation, and while 'raising the bar' in this way, as Microsoft describes it, is a good idea to keep Windows 11 users more secure, the danger is that if the 'bar' gets in the way of a smooth computing experience in the OS, it could end up being a source of frustration.
➡️ Read our full guide to the best laptops
1. Best overall:
Apple MacBook Air 13-inch M4
2. Best budget:
Asus Chromebook CM14
3. Best Windows 11 laptop
Microsoft Surface Laptop 13-inch
4. Best gaming:
Razer Blade 16
5. Best for pros
MacBook Pro 16-inch (M4 Pro)
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!
And of course, you can also follow TechRadar on YouTube and TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.