Microsoft is concerned about users losing trust in Windows 11. But rather than looking at causes close to home – such as updates which introduce serious problems – the company is more interested in diverting attention elsewhere.
A good example of this is Microsoft’s proclamation that “users are increasingly seeing apps override their settings, install additional software or alter core Windows experiences without their awareness or consent”. The company then goes on to explain what it is doing to help improve the situation.
Microsoft says that it is starting new Secure Future Initiative efforts for Windows Baseline Security Mode and User Transparency and Consent in Windows. What does this mean? In short, that there is better app transparency and user consent, with features that make app behavior more visible and app permissions easier to understand and manage.
Going into more detail, Microsoft says:
With Windows Baseline Security Mode, Windows will move toward operating with runtime integrity safeguards enabled by default. These safeguards ensure that only properly signed apps, services and drivers are allowed to run, helping to protect the system from tampering or unauthorized changes. Users and IT administrators will still have the flexibility to override these safeguards for specific apps when needed. Developers can also check whether these protections are active and whether any exceptions have been granted — giving them insight and control over the conditions under which their apps run.
With User Transparency and Consent, we are bringing a more consistent and intuitive approach to how Windows communicates security decisions. Just like on your smartphone, Windows will now prompt you when apps try to access sensitive resources — like your files, camera or microphone — or when they attempt to install other unintended software. These prompts are designed to be clear and actionable, and you’ll always have the ability to review and change your choices later. Apps and AI agents will also be expected to meet higher transparency standards, giving both users and IT administrators better visibility into their behaviors. These updates raise the bar for security and privacy on Windows, while giving you more control and confidence in how your system and data are accessed.
Microsoft is working with third parties, including 1Password, CrowdStrike, and OpenAI in a bid to bring numerous perspectives to the work it is doing. Ari Weinstein, Member of Product Staff at OpenAI, says:
As we build increasingly capable agents, it’s even more important for people to have visibility and control over what’s happening on their computers. It’s great to see Microsoft level up the security of their platform, and we’re excited to work together to deliver powerful, secure AI experiences on Windows and beyond.
In the name of transparency, Microsoft also shares the principles that the Windows Baseline Security Mode and User Transparency and Consent are built on:
- System-enforced transparency. Just like they do today on their mobile phones, users will be able to clearly see which apps have access to sensitive resources, including file system, devices like camera and microphone, and others. If they see an app that they don’t recognize, they will be able to revoke access.
- User-centric consent. Users will have transparency and consent control over how apps access their personal data and device features. They will receive clear prompts to grant or deny apps permission to access protected data and hardware. Users will also be able to revoke permissions they have previously granted.
- Thoughtful rollout. We will begin by giving users and IT admins visibility into how apps and agents behave in the system. For developers, Windows will provide tools and APIs to streamline adoption. Their existing well-behaved apps will continue to work, giving developers the time and runway to adhere to the new, stronger security and privacy posture of Windows.
Check out the blog post here.
Image credit: Davide Bonaldo / Dreamstime.com
