• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Question Windows 10's "core isolation" / "memory integrity" feature

Sort by date Sort by votes
I'm running 1809 64-bit Pro, and it says that I don't even meet "Standard Hardware Security", two of which required items are TPM 2.0, and Secure Boot. I think that my Ryzen R5 1600 CPU supports TPM built-in, but I don't have Secure Boot enabled.

So, it looks like you need those features, at a minimum, before you can even THINK of enabling the additional security layers that you are describing. Oh well. I like being able to access my BIOS by a hotkey during boot. (Disabled in Secure Boot mode.)
 
Upvote 0 Downvote
Interesting. Z97 board here, and it gives me the memory isolation option. It adds a good 5 seconds to the boot cycle though before the circular progress bit starts.

I have UEFI enabled but secure boot disabled due to Linux.
 
Upvote 0 Downvote
VirtualLarry said:
I'm running 1809 64-bit Pro, and it says that I don't even meet "Standard Hardware Security", two of which required items are TPM 2.0, and Secure Boot. I think that my Ryzen R5 1600 CPU supports TPM built-in, but I don't have Secure Boot enabled.

So, it looks like you need those features, at a minimum, before you can even THINK of enabling the additional security layers that you are describing. Oh well. I like being able to access my BIOS by a hotkey during boot. (Disabled in Secure Boot mode.)
Click to expand...

Ha. Secure boot has no effect after transferring control to OS. That MS would make dependent on this “feature” further “security” capabilities is a testament to their herding ability. Essentially secure boot turns your system into a hardened boot-loader just like all those Apple, Android phones etc that you are forced to unlocked and “jail break” if you want proper control. MS are walking the other direction now and want that for your desktop “experience.” Today, optional. In th future, mandatory (for your own protection, of course).
 
Upvote 0 Downvote
Thanks for the heads up!
It's strange that I read a bunch of articles on this new Win 10 and this never came up until now. Perhaps they are still not quite ready for people to start using it - that's what it seems like to me.

I tried to enable it but it didn't stay enabled after restarting - probably because I use Hyper-V. I didn't see anything specifically on Hyper-V not working with it, but it would be nice if they clarified...
 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Back
Top