According to a Microsoft security blog post, right now, attackers that were rejected by security technologies that prevent memory corruption, are switching their focal point towards data corruption.

  • KPD uses virtualization-based security (VBS) to protect a part of the Windows Kernel and drivers against data corruption attacks.Basically, VBS is creating and isolating a secure region of memory from Windows 10.Windows Kernel is the heart of the OS. Read more about it in our Windows Kernel section.If you’re interested more in updates and security, visit our Windows 10 Update & Security Hub.

  • Download DriverFix (verified download file).

  • Click Start Scan to find all problematic drivers.

  • Click Update Drivers to get new versions and avoid system malfunctionings.

  • DriverFix has been downloaded by 0 readers this month.

To counter the attacks, Microsoft is launching a new technology, Kernel Data Protection (KDP).

Attackers use data corruption techniques to target system security policy, escalate privileges, tamper with security attestation, modify initialize once data structures, among others.

How does Kernel Data Protection protect your OS?

KPD uses virtualization-based security (VBS) to protect a part of the Windows Kernel and drivers against data corruption attacks, taking advantage of hardware virtualization features.

Basically, VBS is creating and isolating a secure region of memory from Windows 10.

This way, protecting the kernel memory as read-only will also protect the inbox components, security products, and third-party DRM drivers.

According to Microsoft, the protection is implemented in two parts:

  • Static KDP enables software running in kernel mode to statically protect a section of its own image from being tampered with from any other entity in VTL0.
  • Dynamic KDP helps kernel-mode software to allocate and release read-only memory from a secure pool. The memory returned from the pool can be initialized only once.

What do I need to get Kernel Data Protection?

You don’t have to do anything special to benefit from the new Kernel Data Protection. If you have VBS support, you will also be able to use KDP with an application on Windows 10.

According to Microsoft, right now, VBS is supported on any computer that supports:

  • Intel, AMD or ARM virtualization extensions
  • Second-level address translation: NPT for AMD, EPT for Intel, Stage 2 address translation for ARM
  • Optionally, hardware MBEC, which reduces the performance cost associated with HVCI

KDP is already included in the latest Windows 10 Insider Build. We don’t know yet when it will be included in the Windows 10 stable release.

If the advices above haven’t solved your issue, your PC may experience deeper Windows problems. We recommend downloading this PC Repair tool (rated Great on TrustPilot.com) to easily address them. After installation, simply click the Start Scan button and then press on Repair All.

Still having issues? Fix them with this tool:

SPONSORED

  • Windows Kernel

Email *

Commenting as . Not you?

Comment