Windows 10 is the most utilized operating system on PCs today. As a result, Microsoft has made it a priority to take on some of today’s most prevalent threats.
While your computer appears dormant, it is still busy protecting your data, namely ensuring that your drives are encrypted. This includes both fixed and removable drives, Bitlocker and Bitlocker To Go active and working, respectively.
Once your computer begins startup, other programs activate to ensure more active security. As far as firmware-based security is concerned, your computer begins to authenticate devices, ensures the security of the computer’s chips, and controls the boot process as a whole. Furthermore, your device is protected against various kits and blocks drivers that it doesn’t trust. This keeps your device from being tampered with.
Naturally, this entire process is meant to keep your device from being used by those it shouldn’t be, whether you use a password or the biometrics/PIN that Windows Hello for Business offers. Furthermore, Windows authenticates both the user and the device, and will deny you access to an insecure system with Windows Device Health Attestation.
As you might imagine, Windows 10 has a wide variety of security applications running in the background during its use, most under its Windows Defender line. These various applications help to protect your devices during use, control the software that is available and keep it patched, manage the data that your device processes between business and personal, and keep your system safe from threats.
Of course, while it helps that Windows 10 does all of this, it isn’t quite enough to protect you from all threats.