The control of what software users can run on their machines is becoming ever tighter. Now Microsoft has announced that only signed drivers will work in the next release of Windows 10.

Before you start to panic about backward compatibility with existing drivers the lockdown is only going to be enforced on new installations of Windows 10. If you simply upgrade an existing system then the OS will take over the drivers that are already installed.

Microsoft cannot take the chance that lots of people suddenly discover that their machines no longer work because an existing driver is rejected, so what if they are running with compromised systems! Only new installations, i.e. installing all drivers from scratch, will enforce the new rules from Windows 10 version 1607.

To quote from the Hardware Certification Blog:

"We’re making these changes to help make Windows more secure. These changes limit the risk of an end-user system being compromised by malicious driver software."

So if you are already compromised - tough. 

You can see the rationale, however. Since Windows 10 was announced all drivers have had to be submitted to the Windows Hardware Developer Center to be digitally signed by Microsoft.

Even so I would bet that you have encountered unsigned drivers recently. The reason is probably that it costs too much to go through the hoopla of getting a driver for budget hardware certified. There are conspiracy theorists who propose that it isn't the cost, but simply that driver writers are always including malware in their drivers - especially if they are from China.  

Be warned, if you need to do a fresh install of Windows 10 in the future you might find that your existing drivers are rejected. 

What about testing?

If you have a system that can turn Secure Boot off then this allows cross signed drivers to be used. More realistically you can use a self signed certificate if you set up a test machine, which still has to have secure boot off,  and install the drivers using a utility.

I think the last word has to go to xkcd: 

Authorization

It seems that now they can't even install drivers with your permission - it's Microsoft's permission that counts.

More Information

Driver Signing changes in Windows 10, version 1607

Related Articles

Fear and Loathing In The App Store

1. Apple Drops Bitcoin App 
2. Apple Rejects App For Being Too Simple     
3. Banned For Life      
4. When Apps Vanish
5. Apple Doesn't Want Amateur Hour       
6. Apple's Reasons For Rejection 
7. Google Wants Everyone To Know Where You Live   
8. Apple Takes Down Innovative App      
9. The EFF Refuses Apple's Conditions       
10. Firefox Gets A Walled Garden        
11. Apple Is Watching       
12. Apple Punishes IFixit  
13. Fear And Loathing In the App Store 13 - Apple Rejects Gravity 
14. Apple Rejects F.lux And It Isn't Even In The App Store!
15. Apple Bans F.lux And Then Duplicates  It
16. App Store Income Dashed With No Appeal
17. The Strange Case Of AdNauseam
18. Apple Bans Templated Apps
19. Apple Rejects Net Neutrality App
20. Apple Stops Crypto Currency Mining App
21. Oracle Owns JavaScript and Apple Pulls App
22. Apple Revokes Facebook's Developer Certificate
23. Is The Walled Garden About To Close Around MacOS?
24. Apple Promotes Own Apps Before Yours
25. Developer's Facility Used To Create Open Apple App Store
26. Devs Finally Angry At Apple's App Store.
27. Epic Games V Apple - Smash The App Store

Jailbreaking the Developer  

Epic Games CEO Finally Notices That UWP Apps Are A Walled Garden

To be informed about new articles on I Programmer, sign up for our weekly newsletter, subscribe to the RSS feed and follow us on, Twitter, Facebook, Google+ or Linkedin. 

Comments

Make a Comment or View Existing Comments Using Disqus

or email your comment to: comments@i-programmer.info