.png)
Security and Protection Overview
Published: February 29, 2012
Updated: August 8, 2012
Applies To: Windows Server 2012
This collection contains descriptions and links to information about security technologies in Windows Server 2012 and Windows 8.
The following table provides links to available information for the IT professional about security technologies and features for Windows Server 2012 and Windows 8. More technologies and features will be added to this table as content becomes available.
| Feature/Technology | Overview | What’s Changed |
|---|---|---|
|
Access Control |
Access Control and Authorization Overview Access control helps protect files, applications, and other resources from unauthorized use. |
|
|
AppLocker |
AppLocker provides policy-based access control management for applications. |
|
|
BitLocker |
BitLocker Drive Encryption enables you to encrypt all data that is stored on the operating system volume and configured data volumes for computers running supported versions of Windows. By using a Trusted Platform Module (TPM), it can help ensure the integrity of early startup components. |
|
|
Credential Locker |
Credential Locker is managed through the Control Panel by Credential Manager |
|
|
Encrypted Hard Drive |
Encrypted Hard Drive is a feature that is provided with BitLocker to enhance data security and management. |
|
|
Group Managed Service Accounts |
Group Managed Service Accounts Overview The group Managed Service Account provides the same functionality as the standalone Managed Service Account within the domain, and it extends that functionality over multiple servers. |
|
|
Kerberos |
Kerberos Authentication Overview Kerberos protocol is an authentication mechanism that verifies the identity of a user or host. |
|
|
NTLM |
The NTLM authentication protocols authenticate users and computers based on a challenge and response mechanism that proves to a server or domain controller that a user knows the password associated with an account. |
No changes |
|
Passwords |
The most common method for authenticating a user's identity is to use a secret passphrase or password as part of the sign in process. |
No changes |
|
Security Auditing |
Security auditing is one of the most powerful tools to help maintain the security of your system. Security auditing should identify attacks (successful or not) that pose a threat to your network, or attacks against resources that you have determined through risk assessment to be valuable. |
|
|
Security Configuration Wizard |
The Security Configuration Wizard is an attack-surface reduction tool that helps administrators create security policies that are based on the minimum functionality required for a server's roles. |
No changes |
|
Security Policy Settings |
Security Policy Settings Overview Security policy settings are the configurable rules that the operating system follows when it determines the permissions to grant in response to a request for access to resources. |
|
|
Smart Cards |
Smart cards provide a tamper-resistant and portable security solution for tasks such as authenticating clients, signing in to domains, signing code, and securing email. |
|
|
Software Restriction Policies |
Software Restriction Policies (SRP) is Group Policy-based feature that identifies software programs running on computers in a domain, and controls the ability of those programs to run. |
No changes |
|
TLS/SSL (Schannel SSP) |
TLS/SSL (Schannel SSP) Overview Schannel is a Security Support Provider (SSP) that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) Internet standard authentication protocols. |
|
|
Trusted Platform Module (TPM) |
Trusted Platform Module Technology Overview Trusted Platform Module (TPM) technology is designed to provide hardware-based, security-related functions. |
|
|
User Account Control (UAC) |
UAC helps mitigate the impact of a malicious program. |
|
|
Windows Authentication and Logon |
Windows Authentication Overview This collection includes:
|
For changes in these technologies, see the overviews that are listed for each within this table. |
|
Windows Biometric Framework |
Windows Biometric Framework Overview The Windows Biometric Framework (WBF) is a set of services and interfaces that permit consistent development and management of biometric devices, such as fingerprint readers. WBF improves the reliability and compatibility with biometric services and drivers. |
See Also
