blog

New Windows Server 2022 Includes Security Improvements

Written by Securafy Team | Mar 29, 2021 3:00:00 PM

Recently, Microsoft made an announcement regarding the particulars of Windows Server 2022, and there's a lot to like in terms of built-in protections. That is amazing, even if you're not especially concerned about security.

Here's a quick overview of what you can expect: First and foremost, Server 2022 will incorporate "Secured-Core" technology already in use on the PC market, bringing an additional layer of protection against the growing number of firmware threats posed by hackers around the world.

Combined with Secured-core, the new platform will offer:

  • Greater Connection Security - Server 2022 will have TLS (Transport Layer Security) 1.3 enabled as the default, which eliminates obsolete cryptographic algorithms, enhances security over older versions and encrypts as much of the handshake between devices as possible. As the latest version of the internet's most widely deployed security protocol, this is a great thing indeed.
  • Better Account Support For Containers - Containers are the building blocks of a wide range of applications and services. The current paradigm forces everyone who uses Group Managed Service Accounts to domain join their container host to enable gMSA functionality. That sees many organizations running afoul of scalability and management issues. Server 2022 will offer improved gMSA support that won't require domain joining the host, which should streamline and simplify on that front.
  • Enhanced Exploit Protection - Hardware innovations are playing an increasing role in terms of exploit mitigation, and Server 2022 takes full advantage of this. That includesoffering the latest in chipset security extensions, Control-flow enforcement Technology and hardware-enforced Stack Protection, making your server much more robust and better able to resist all but the most determined hacking attacks.

Naturally, there's no such thing as a perfectly secure system, and even if such a system was invented, you can bet that it wouldn't take the hackers of the world long to find a hole in the security.

Nonetheless, these are tremendously good improvements that will make you safer and more secure. In a dangerous and imperfect world, that's saying a lot. Kudos to Microsoft.