Microsoft Discusses Improving Windows Security Updates After Global Crash Event

TapTechNews September 13th news, Microsoft Corporation yesterday (September 12th) released a blog post titled 'Taking Multiple Measures to Enhance the Resilience and Security of Windows Customers', discussing how to improve Windows security updates after the global blue screen crash event of Crowdstrike.

Microsoft held the 'Windows Terminal Security Ecosystem Summit' at its Redmond headquarters in Washington state on Tuesday, September 10th, aiming to brainstorm on how to enhance Windows security performance and improve the release mechanism of security updates for Windows computers.

Microsoft summarized the discussion results of this summit in the blog post, but emphasized that this summit 'is not a decision-making meeting', just presenting some ideas for improving Windows security and updates in the short and long term.

Microsoft stated that it will share its own Security Deployment Practice (SDP) in the near future and discussed how security vendors can share their practices in terms of data, tools, and processes. TapTechNews attaches the blog content as follows:

The Windows ecosystem is currently very large, and there are a series of challenges in how to securely push updates, including deciding how to conduct planned gradual deployment for diverse terminals and being able to pause or roll back updates when necessary.

One of the core principles of the Software Distribution Package (SDP) is to progressively send updates to customers in stages, with the goal of working with vendors to 'jointly formulate a set of best practice guidelines'.

Microsoft Defender for Endpoint has released the SDP, and many of our ecosystem partners, such as Broadcom, Sophos, and TrendMicro, have also shared their methods of handling the SDP.