Share this article

Latest news

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low

Copilot in Outlook will generate personalized themes for you to customize the app

Microsoft will raise the price of its 365 Suite to include AI capabilities

Death Stranding Director’s Cut is now Xbox X|S at a huge discount

Outlook will let users create custom account icons so they can tell their accounts apart easier

Windows 10 might be more secure, but CERT wants Microsoft to keep EMET alive

2 min. read

Published onNovember 29, 2016

published onNovember 29, 2016

Share this article

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Microsoft is running into a bit of a conundrum as it looks to transition Windows from the legacy toting tractor-trailer operating system it used to be; to a sleeker and more refined future proof cross-platform experience. The problem, is that the new vision Microsoft has for Windows 10 seems to be truncated by its newness a lot of the time.

Despite Microsoft’s pillar of security regarding Windows 10, Enhance Mitigation Experience Toolkit customers are claiming the baked in EMET features in Windows 10 are nice, but not up to Windows 7 stuff.

According to a report from InfoWorld, “Even a Windows 7 system with EMET configured protects your application more than a stock Windows 10 system,” said Will Dormann, a vulnerability analyst with theComputer Emergency Response Team(CERT) at Carnegie Mellon University’s Software Engineering Institute.

The reason this matters is that Microsoft is looking to extract itself from supporting EMET due to the baked in security measures and exploit migration tools already accompanying Windows 10. Many are arguing that Windows 10 as a standalone product still does not provide the level of granular control or security supporting both Windows 10 and EMET 5.51 would provide.

The main crux of admin complaints stems from application defenses still lagging in functionality.

Windows 10 may be themost secure Windows ever, but the applications have to be compiled to utilize the exploit mitigation features to actually benefit from thoseenhanced security features. For example, if the application isn’t designed to use Control Flow Guard, then the application doesn’t benefit from Return-Oriented Programming (ROP) defenses, despite the fact that Control Flow Guard is part of Windows 10.

As Microsoft continues to evolve Windows 10, there is a possibility that engineering team builds in the missing feature sets EMET 5.51 user have grown dependent upon. However, until such a time, IT Pro will continue to protest Microsoft’s reluctance to either provide the proper tools and security or support ones already in place.

Kareem Anderson

Networking & Security Specialist

Kareem is a journalist from the bay area, now living in Florida. His passion for technology and content creation drives are unmatched, driving him to create well-researched articles and incredible YouTube videos.

He is always on the lookout for everything new about Microsoft, focusing on making easy-to-understand content and breaking down complex topics related to networking, Azure, cloud computing, and security.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Δ

Kareem Anderson

Networking & Security Specialist

He is a journalist from the bay area, now living in Florida. He breaks down complex topics related to networking, Azure, cloud computing, and security