Digital Trends
Computing

Microsoft is now enforcing its rule banning unsigned Windows 10 kernel mode drivers

Kevin Parrish
By

windows 10 insider preview 14955 outlook mail calendar narrator upgrade
Bill Roberson/Digital Trends
Microsoft announced last week that starting with Windows 10, version 1607, the operating system will refuse to load any new kernel mode drivers that are not signed by the Windows Hardware Developer Center Dashboard portal, or Dev Portal. To be clear, new installations of this version of Windows 10 will enforce the new driver signing rule, whereas older versions of Windows 10 upgrading to 1607 will not be affected by the change.

Microsoft actually made changes to the driver signing rule with the launch of Windows 10 back in July 2015. The company said from that point on, all new Windows 10 kernel mode drivers must be submitted to and digitally signed by the Dev Portal. If they were not, Windows 10 reportedly wouldn’t load those new kernel drivers.

However, as the company pointed out last week, the new driver signing change wasn’t really enforced up until now due to “technical and ecosystem readiness issues.” Thus, the change remained as a mere policy statement and wasn’t enforced by the Windows Code Integrity component of Windows 10, which validates the integrity of a driver or system file.

For developers, Microsoft described two steps that must take place to push new drivers to Windows 10. First, they must submit the drivers to Microsoft via the Dev Portal. Next, they need to begin the process of getting an Extended Validation (EV) Code Signing Certificate. All drivers submitted to the Dev Portal must have this EV certification no matter what operating system version the developer plans to support with their driver package.

Additionally, developers wanting to get a driver that’s signed for all versions of Windows between Vista and Windows 10 must run the HLK tests for Windows 10, and the HCK tests for Windows 8.1 and earlier. After that, developers can use the Windows 10 HLK to merge the two test logs and submit those results to Microsoft along with the driver in question.

As for existing drivers, developers are not required to have them re-signed for Windows 10 1607 and newer. “To ensure backwards compatibility, drivers which are properly signed by a valid cross-signing certificate issued prior to July 29th, 2015, will continue to pass signing checks on Windows 10, version 1607,” Microsoft states.

So what does all of this mean for the end user? A more secure environment. Thanks to this enforced rule, Windows 10 will prevent users from unknowingly installing malicious driver software that could in turn load up malicious apps or programs, enable remote control to a hacker, and open a doorway to sensitive files and data, like passwords and bank account information.

According to Microsoft, the new driver signing change also reduces the risk of lost or stolen driver signing keys from the publisher. The change even ensures that driver publishers are “strongly authenticated,” thus fortifying the secure foundation of Windows 10 on a whole.

Editors' Recommendations

Don't Miss

Singapore Airlines passengers unsettled by cameras in seat-back displays
Up Next

Simple PS Vita homebrew exploit gives access to hobbyist-created games, apps
Alfa Romeo C38 Formula One car
Cars

Alfa Romeo’s latest Ferrari-powered F1 race car is ready to hit the track

Alfa Romeo is doubling down on Formula One racing after a decades-long hiatus. Now essentially a support team for Ferrari, its 2019 driver lineup includes a former world champion and a potential future star.
Posted By Stephen Edelstein
Computing

Reluctant to give your email address away? Here's how to make a disposable one

Want to sign up for a service without the risk of flooding your inbox with copious amounts of spam and unwanted email? You might want to consider using disposable email addresses via one of these handy services.
Posted By Jon Martindale
shows to stream american gods vikings 4b
Movies & TV

Stay inside this winter with the best shows on Hulu, including 'Legion'

It's often overwhelming to navigate Hulu's robust library of TV shows. To help, we put together a list of the best shows on Hulu, whether you're into frenetic cartoons, intelligent dramas, or anything in between.
Posted By Will Nicol
new nintendo 2ds xl 2 13703
Gaming

Nintendo 2DS XL vs. Nintendo 3DS XL: Which handheld reigns supreme?

The 3DS family of systems hasn't shown any signs of letting up in the age of the Nintendo Switch. With the New Nintendo 2DS XL in the picture, let's compare the newcomer to the New Nintendo 3DS XL.
Posted By Steven Petite
heres everything microsoft could announce at its october 2 surface event laptop 4695
Computing

Microsoft's latest Surface Laptop 2 runs past the updated MacBook Air

Apple recently updated its venerably MacBook Air, giving it a sleeker and more modern design. That pits it against the Surface Laptop 2, Microsoft's update of its own traditional laptop.
Posted By Mark Coppock
best cheap macbook deals 3
Deals

From Air to Pro, here are the best MacBook deals for February 2019

If you’re in the market for a new Apple laptop, let us make your work a little easier: We hunted down the best up-to-date MacBook deals available online right now from various retailers.
Posted By Lucas Coll
free drawing software
Computing

Need a free alternative to Adobe Illustrator? Here are our favorites

Photoshop and other commercial tools can be expensive, but drawing software doesn't need to be. The best free drawing software is just as powerful as some of the more expensive offerings.
Posted By Kevin Parrish
LG 32UD99-W review full
Computing

Here's what you need to play games and watch movies in 4K on your PC

4K display tech is now cheaper than ever, but there's more to running stuff at such a high display resolution than just handing over the dough for a 4K-equipped display. Here's what you need to run 4K.
Posted By Matthew S. Smith
Microsoft Surface Go Review
Computing

Is it worth spending more for the Surface Pro, or is the Surface Go good enough?

The Surface Go vs. Surface Pro — which is better? While the higher price tag of one might make you think it's an easy choice, a deeper dive into what each offers makes it a closer race than you might assume.
Posted By Jon Martindale
best PDF editors MacBook
Computing

Edit, sign, append, and save with six of the best PDF editors

Though there are plenty of PDF editors to be had online, finding a solution with the tools you need can be tough. Here are the best PDF editors for your editing needs, no matter your budget or OS.
Posted By Tyler Lacoma
Computing

Why limit yourself to one OS? Try one of these great virtual machine apps

Buying a new computer just because you want to utilize another operating system isn't necessary. Just use the best virtual machine applications to emulate one OS inside another, no matter what your platform or budget is.
Posted By Jon Martindale
avadirect avant mid size dekstop ava direct midsize gaming 8
Computing

Between Intel and AMD, these are the best gaming CPUs at every price

What are the best processors for gaming you can buy? You don't need to spend a fortune to get an amazing gaming CPU and now that AMD is competitive again, there are more choices than ever.
Posted By Jon Martindale
google wants to kill urls make the internet safer chrome url
Web

Rid yourself of website notification requests in just a few easy steps

Wish you knew how to block browser and website notifications? You can do it on a case by case basis, but that can become dull after the 10th site has asked for your approval. Here's how to block them outright.
Posted By Jon Martindale
internet speed tests
Computing

Don't take your provider's word for it. Here's how to test your internet speed

If you're worried that you aren't getting the most from your internet package, speed tests are a great way to find out what your real connection is capable of. Here are the best internet speed tests available today.
Posted By Mark Coppock