Skip to main content

Microsoft’s Secured Core PCs could be the most hacker-resistant laptops ever

Thanks to a new Microsoft design directive, new Windows laptops from Lenovo, Panasonic, Dell, and HP could be the most hacker-resistant yet. The directive ensures that “Secured-core PCs” come equipped with a new hardware modification which protects the underlying firmware of the system, preventing attackers from stealing sensitive information like encryption keys, and gaining root system access.

One of the most ingenious ways hackers have targeted Windows PCs in recent years has been by going after the underlying unified extensible firmware interface (UEFI) which helps PCs get started once you hit the power switch. Although software protections like Microsoft’s Secure Boot will ward off attacks against the operating system, if the UEFI is compromised, it and any other protective measures like anti-malware software can’t do a thing to stop it.

Image used with permission by copyright holder

That’s why many organizations have been advocating for a stronger root of trust, founded in protective hardware, and it seems Microsoft has been listening. The secure core will check the firmware on a system during startup to make sure that it’s legitimate and not infected. It has also protected itself using encryption, which only the device manufacturers have the decryption keys for, adding a secondary layer of anti-tamper protection to the new security system.

Recommended Videos

This isn’t entirely dissimilar to what we’ve seen other hardware developers like Apple do, with specialized chips confirming the firmware is protected. But where Apple can control all of the hardware in its products and typically utilize chips from one or two manufacturers, Microsoft’s Windows is found on devices with AMD, Intel, and ARM CPUs at the core, among others. It appears as if Microsoft has, in concordance with these manufacturers, developed a system that will work for all of them.

Microsoft confirmed to Digital Trends that the secured core solution includes hardware that is both on and off the CPU die.

In any case, however, the new Secure Core hardware configuration and sticker-clad certification will be available in high-end and business-focused devices. The first to support it, is Microsoft’s own Surface Pro X, although Microsoft has also confirmed it for new editions of the Lenovo ThinkPad X1 Yoga, ThinkPad X1 Carbon, Panasonic Toughbook 55, Dell Latitude 5300 2-in-1, and 7400 2-in-1. The HP Elite Dragonfly, Dynabook Portege X30-F, Tecra X40-F, and X50-F will also be certified with this new hardware and protective ecosystem.

Updated on October 22: Added Microsoft clarification on the location of secured core hardware.

Jon Martindale
Jon Martindale is a freelance evergreen writer and occasional section coordinator, covering how to guides, best-of lists, and…
Microsoft calls Recall one of ‘the most secure experiences’ it’s ever built
Recall promotional image.

As part of its Ignite 2024 announcements, Microsoft has provided an update on how its AI-powered Recall feature will work in the context of an IT department. Noting that the company has "heard your feedback," specifically in terms of it needing it to be more "secure and controllable," Microsoft claims to have gotten its ducks in a row for the launch of its controversial new Windows 11 feature.

Microsoft says that Recall "will ship with meaningful security enhancements, including additional layers of data encryption and Windows Hello protection, making it one of the most secure experiences we have ever built." Whether or not this will be enough to satisfy the security community, however, is still to be determined.

Read more
Don’t use your Windows PC without using these security settings
The Windows Security app in Windows 11.

Historically, Windows has had a bad reputation for security, and there are far more malware strains that target Windows than any other operating system out there -- largely due to the scale of PCs that exist in the world. With such a vast array of potential threats, it’s more important than ever to keep your Microsoft PC safe and protected.

But doing so doesn’t have to be difficult or expensive. In fact, you can start right now with just the computer you own, no extra software necessary. And if you do want to supplement your PC with some of the best Windows apps that will boost your security and privacy, you don’t need to pay a penny.

Read more
Microsoft Surface Pro vs. Microsoft Surface Laptop: mainstream battle
The edge of the Surface Pro 11.

Since releasing the original Surface tablet in 2012, Microsoft has grown its PC business into a multibillion-dollar enterprise. The mobile Surface line has expanded to include 2-in-1 and traditional clamshell laptops in various form factors. There's the Surface Pro 11, Surface Laptop 7, Surface Laptop Go 3, and Surface Laptop Studio 2. That's quite the lineup, and you'll find a Surface on a number of our best-of lists such as best tablets and best laptops.

The two most mainstream lines, though, are the Surface Pro 11 and the Surface Laptop 7. Each has its strengths and weaknesses, and you'll want to keep them in mind if you're looking for a Surface and choosing between the two.
Specs and configurations

Read more