While attending MS TechEd 2012 in Orlando, FL a few bits and pieces of information keep coming out. Windows 8 RT; the Windows 8 version that will run in ARM processors, will be aimed at lighter-and-better-battery-life… but that is not all… one item explained in great technical detail at one of the sessions was the long overdue replacement of the Master Boot Record.
The MBR originated in the late 1970’s and it what the computer uses to hand over control of the boot-up process from the BIOS in the hardware to the software in storage. While the old MBR process ultimately works, it is the root cause for a lot of malware injecting itself into the computer before the OS loads and can detect it. In the MBR world, whoever loads first can decide what later components are to load… So, many malware programs do this in order to choose not to load a preventive software (or even worse, loads an infected version).
Enter Windows 8, the boot-up process will include different forms of this secure-anti-malware process called UEFI, which is an open and independent standard that requires certification. In Windows 8 RT the process will be called Trusted Boot. UEFI’s Trusted Boot will execute a series of validations and checks on the program that is asking control for the next step. If the process passes validation, then it knows it is OK to continue and that the booting process has not been compromised. In addition to this, it moves the loading of the anti-malware process at an earlier stage so that it can prevent malware from affecting the PC. So far, it would be a great enhancement to Windows PCs, but what happens when the process does not pass validation? Here is the great thing about this process, it will simply replace the bad-malware-affected program with a safe-checked-and-validated copy of it giving Windows 8 a self-healing ability against boot-process malware!
This is very bad news for black-hat hackers and malware coders, but it is awesome news for users.
For regular Intel/AMD Windows 8 PCs, this process will be supported only on devices that support UEFI boot-up. Legacy hardware cannot be updated to support the whole change, but will have firmware updates that will adopt some of these principles. If you are planning on buying a Windows 8 ARM device you are going to be much more protected than upgrading from an older Windows PC or Tablet.
This post has been viewed 72144 times.