Improving Data Protection in Windows 10 Image via Microsoft

Improving Data Protection in Windows 10

Microsoft continues to make a case for the improvements in security across its year old Windows 10 operating system.

We have discussed a few of them here on IT Pro: Windows including improving overall company security, using Windows Hello to strengthen user authentication and using Windows Hello with Remote Access.

The next area of improved security for Windows 10 is actually one you are already familiar with under its old name of Enterprise Data Protection (EDP).

Over on Microsoft's Windows for IT Pros website, Chris Callum introduces everyone to Windows Information Protection which will be available in the Windows 10 Anniversary Update when it becomes available on 02 August.

Callum states that Microsoft looked at their approach to information protection across four key areas:

  1. Device Protection: Protect system and data when device is lost or stolen
  2. Data Separation: Containment and data separation
  3. Leak Protection: Prevent unauthorized users and apps from accessing and leaking data
  4. Sharing Protection: Protect data when shared with others, or shared outside of organizational devices and control

Although much of this type of protection existed in certain products, services and management tools, customers were looking to have more of it built into the operating system itself and that led Microsoft to bring some of the information protection basics to Window under Windows Information Protection.

Here is how the company decided to do just that:

  1. Device Protection: Using BitLocker on the OS
  2. Data Separation: Using Windows Information Protection in the OS
  3. Leak Protection: Using a combination of  Windows Information Protection in the OS plus Azure Information Protection and Office 365 management
  4. Sharing Protection: using Azure Information Protection and Office 365 management

Windows Information Protection will implement these features in Windows 10:

  • Protects data at rest locally and on removable storage
  • Common experience across all Windows 10 Devices with copy and paste protection
  • Seamless integration into the platform without mode switching and any app can be used
  • Corporate versus personal data is identifiable on the device and can be wiped
  • Prevents unauthorized apps from accessing business data and users from leaking data using copy and paste

Microsoft knows companies want to implement security but the product has to not only meet their needs but also be easy to deploy and Microsoft believes they have hit that sweet spot with Windows Information Protection:

"When we designed WIP, we set a goal to create a solution that almost every customer would be willing to deploy. We knew that had to be super easy to deploy, it needed to work with existing apps, and it couldn’t get in the way or require too much user interaction. We wanted it to work great for both SMB’s and enterprises, and based on the feedback that we have received so far, we believe that we’ve achieved that goal. WIP was designed to provide the “the fundamentals of information protection” that customers asked us for right in the box, and it’s been dovetailed so that it can work with Azure Rights Management and Office 365 to help take data leak prevention to an even higher level."

Read more details about Windows Information Protection over on the Microsoft Windows for IT Pros site.

But, wait...there's probably more so be sure to follow me on Twitter and Google+.


Looking for an awesome, no-nonsense technical conference for IT Pros, Devs, and Devops? Check out IT/Dev Connections!

IT/Dev Connections

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.