For example, this approach makes the isolated container anonymous, so an attacker can't get to your employee's enterprise credentials. This container isolation means that if the untrusted site turns out to be malicious, the host PC is protected, and the attacker can't get to your enterprise data. If someone within the network goes to an untrusted site through either Microsoft Edge, Internet Explorer, etc., the site is opened in an isolated Hyper-V-enabled container, which is separate from the host operating system. Everything not on your list is considered untrusted. As an enterprise administrator, you have the power to define what is among trusted web sites, cloud resources, and internal networks. Like other similar apps, if an untrusted website happens to be malicious, it remains within Application Guard's secure container, keeping your machine and data protected from infection.ĭesigned initially for Windows 10 and Microsoft Edge, Application Guard was meant to isolate enterprise-defined untrusted sites, protecting your company while your employees browse the Internet. Microsoft Defender Application Guard works by utilizing a unique hardware-based isolation approach by opening untrusted websites inside a lightweight container separated from your OS via Hyper-V virtualization technology. Microsoft Defender Application Guard Companion not only provides an isolated Microsoft Edge browsing window but also allows browsers other than Microsoft Edge to work with it as well.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |