Virtual Event: Threat Detection and Incident Response Summit - Watch Sessions
Connect with us

Hi, what are you looking for?


Endpoint Security

Microsoft Expands Secured-core to Servers, IoT Devices

Microsoft this week announced Secured-core Server and Edge Secured-core, two solutions aimed at improving the security of servers and connected devices.

Microsoft this week announced Secured-core Server and Edge Secured-core, two solutions aimed at improving the security of servers and connected devices.

Initially announced in 2019, Secured-core is the result of a partnership between Microsoft and hardware manufacturers, and its goal is to add a security layer that combines identity, virtualization, operating system, hardware and firmware protection capabilities.

When it introduced Secured-core PCs, Microsoft said they were ideal for industries handling highly sensitive information, such as financial services, government, and healthcare. The company is now expanding coverage to servers and Internet of Things (IoT) devices, aiming to protect them against common attack vectors.

“Secured-core functionality helps proactively close the door on the many paths that attackers may try to exploit, and it allows IT and SecOps teams to optimize their time across other priorities,” the tech company says.

Secured-core Server aims to deliver not only advanced protection, but also simplified security and preventative defense. Thus, both hardware and firmware that manufacturers bring to market should satisfy specific security requirements.

Secured-core certified systems that feature secure hardware platforms are available for both Windows Server and validated Azure Stack HCI solutions, the company says.

The expanded coverage is accompanied by new functionality in the Windows Admin Center, allowing customers to configure the OS security features of Secured-core for Windows Server and Azure Stack HCI systems directly from a web browser. Manufacturers have the option to enable OS features for Azure Stack HCI systems.

Advertisement. Scroll to continue reading.

Secured-core Servers feature hardware root-of-trust (courtesy of capabilities such as BitLocker, which leverages Trusted Platform Module 2.0), firmware protection (with support for Dynamic Root of Trust of Measurement (DRTM) technology), and support for virtualization-based security (VBS) and hypervisor-based code integrity (HVCI) to isolate parts of the OS and protect against entire classes of vulnerabilities.

Edge Secured-core, on the other hand, seeks to improve the built-in security of IoT devices running a full OS and also brings Secured-core to Linux.

Microsoft is also making Edge Secured-core public preview available within the Azure Certified Device program. Certified devices meet additional security requirements related to device identity, data protection, device updates, secure boot, OS hardening, and vulnerability disclosures.

Edge Secured-core devices feature a zero-trust attestation model, a built-in security agent, and security by default, to enforce system integrity, deliver hardware-based device identity, be remotely manageable, stay updated, and deliver protection for data.

Related: For Microsoft, Security is a $10 Billion Business

Related: Microsoft Defender ATP Gets UEFI Scanner

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.

Artificial Intelligence

ChatGPT is increasingly integrated into cybersecurity products and services as the industry is testing its capabilities and limitations.

CISO Strategy

Security professionals understand the need for resilience in their company’s security posture, but often fail to build their own psychological resilience to stress.

IoT Security

A group of seven security researchers have discovered numerous vulnerabilities in vehicles from 16 car makers, including bugs that allowed them to control car...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...