Microsoft is determined to make Edge the most secure browser, with a new feature called Windows Defender Application Guard which would be available for enterprises.
Usually, when an browser-based attack (or any attack for that matter) takes place, not only the data in your device is stolen but also your credentials are used to spread the attack in your network and eventually steal as much data as possible.
With Windows Defender Application Guard, when the user visits a site either by clicking on a hyperlink in mail or through other means, and the link leads to a untrusted site (not listed in the whitelist maintained by the network administrator), Edge would automatically open that site in a completely isolated environment using Hyper-V virtualization technology, says Microsoft.
Application Guard creates a new instance of Windows at the hardware layer, with an entirely separate copy of the kernel and the minimum Windows Platform Services required to run Microsoft Edge.
If the untrusted website is a bad site which runs an exploit kit, and the attack has been successful, the attacker still won’t have access to your stuff beyond the virtual environment. None of your files or local or domain credentials in your normal working environment can be accessed by the attacker.
Since the attack has happened in the isolated/sandboxed or Virtual environment, the Malware which may have been dropped won’t persist after Edge is closed. Everything in that virtual container would be destroyed.
This is a super exciting feature that will make Edge more secure than ever, protecting systems from Zero-day attacks, Ransomware, Malware and vulnerabilities in the Operating System itself. Windows Defender Application Guard would be available (for enterprises) in 2017.
Check out Introducing Windows Defender Application Guard for Microsoft Edge | Microsoft Edge Dev Blog to learn more about the new feature.
One small request: If you liked this post, please share this?One "tiny" share from you would seriously help a lot with the growth of this blog. Some great suggestions:
- Pin it!
- Share it to your favorite blog + Facebook, Reddit
- Tweet it!
About the author
Ramesh Srinivasan founded Winhelponline.com back in 2005. He is passionate about Microsoft technologies and he has been a Microsoft Most Valuable Professional (MVP) for 10 consecutive years from 2003 to 2012.