Microsoft's Kernel-Level Security Overhaul: A Collaborative Effort to End BSODs
Following a widespread outage caused by a faulty CrowdStrike update last year, Microsoft is collaborating with major security vendors like CrowdStrike, Bitdefender, and ESET to revolutionize Windows kernel security. The initiative involves moving antivirus and EDR applications out of the kernel to a new endpoint security platform. This aims to mitigate the risk of kernel-level driver errors causing system crashes and reduce reliance on kernel-level access, including for game anti-cheat engines. Microsoft emphasizes this will be an iterative process, starting with AV and EDR, before expanding to other use cases. Additionally, a new Quick Machine Recovery feature and a redesigned BSOD are also in the works to improve user experience.