Big May Windows Update 10 (2004) Finally became available to everyone. It included a lot of improvements related to security, and users already had a lot of problems, a list of which Microsoft engineers are currently working on.
The new version of Windows 10 has many new features, for example, the OS received an updated Network Status page, and a GPU temperature sensor was added to the Task Manager. But we’ll talk about security improvements that Microsoft says will protect Windows 10 users for many more years.
Last year, with the release of version 1903, Microsoft introduced Windows Sandbox for all versions of its OS. Windows Sandbox allows users to run a virtual machine with a stripped-down version of Windows 10, and this component has already gained considerable popularity, since it allows you to easily run potentially dangerous applications in an isolated environment.
Microsoft has now introduced a number of new features for Sandbox that will simplify automation in enterprise environments. So, there is support configuration files (which will help you configure some aspects of the sandbox, such as vGPU, network, and shared folders); microphone support; the ability to configure the audio input from the configuration file and so on.
Wifi 6 and WPA3
Windows 10 2004 supports latest versions of Wi-Fi and WPA. Updates to both protocols include protection against a number of serious vulnerabilities, including DragonBlood, KRACK and so on.
Update received and function System Guard Secure Launch, which checks if the device firmware has been downloaded in a secure manner, without making any changes.
Now System Guard Secure Launch takes into account more parameters than before, however, these changes require modern hardware, that is, the function may not work on some devices.
Basic security settings
The company's specialists have prepared drafts Updated basic security settings for Windows 10 and Windows Server.
In fact, the basic security settings are the basic OS configurations that system administrators can apply to machines from their computer parks.
Windows Hello allows users to log into the OS using biometric data (fingerprints, face recognition) or without a password (PIN). In Windows 10 2004, if Windows Hello is enabled, these login options are available even for computers loaded in Safe Mode.
In addition, passwordless authentication through Windows Hello can be used as an alternative to regular passwords for Microsoft accounts.
Windows 10 supports FIDO2 hardware keys, as a form of passwordless authentication. Starting with Windows 10 2004, support for FIDO2 has been expanded to include hybrid devices integrated with Azure Active Directory (Azure AD).
Now devices based on the new AMD Ryzen Pro 4000 chipsets are compatible with technology Secured-core, which provides additional protection against attacks that affect device hardware, firmware, or internal CPU components.
In Windows 10 appeared cloud recovery option. Previously, the “Reset this PC” option simply suggested performing a local reinstall to create a new Windows installation from existing files. Starting with Windows 10 2004, users will be able to choose the cloud recovery option, that is, Windows will download the files necessary for reinstallation from Microsoft servers.
As mentioned above, Microsoft already make a list of problemsthat users encounter after installing Windows 10 2004. The company encourages users and system administrators to familiarize themselves with this list, and if any of the problems identified may affect their systems until they are advised to update manually using the Media Creation Tool or the button Update now (until the problems are resolved).
Some of the known bugs interfere with connecting to more than one Bluetooth device; devices with an Intel GPU on board may experience problems with the refresh rate; errors may also occur when connecting or disconnecting Thunderbolt docking stations.
Other problems arise due to the use of old Nvidia drivers, and can also lead to unexpected reboots of devices using network adapters that support Always On, Always Connected.
Microsoft, together with the developers of problematic drivers and firmware, is already working to resolve these issues. Patches should be ready for the next release. Also, regarding a number of problems, Microsoft offers various workarounds, noting that users will need to check the device manufacturer’s website for an updated version of the driver and install it.
A complete list of known issues in Windows 10 2004 can be seen below.
- Problems connecting to more than one Bluetooth device
Windows 10 devices with specific Realtek drivers may not be able to connect to more than one Bluetooth device (more details)
- Errors or problems during or after updating devices with the Conexant ISST audio driver
users of devices with Conexant ISST audio drivers on board may receive error messages or have problems updating (more details)
- Errors or problems during or after updating devices with some Conexant and Synaptics audio drivers
users of devices with Conexant and Synaptics audio drivers may receive error messages and encounter BSOD (more details)
- Problems using ImeMode to control IME for individual text input fields
some IMEs for certain languages can cause problems using ImeMode in certain applications (more details)
- Different refresh rates do not work on devices with Intel GPUs
enabling VRR on vulnerable devices does not include VRR for most games, especially games with Direct X 9 (more details)
- Error message and BSOD when connecting or disconnecting a Thunderbolt dock
the problem appears on devices that have at least one Thunderbolt port, Kernel DMA Protection is enabled, and Windows Hypervisor Platform is disabled (more details)
- Errors or reboots of devices using Always On, Always Connected
devices that have more than one network adapter that supports Always On, Always Connected (for example, Microsoft Surface Pro 7, Microsoft Surface Laptop 3) may encounter problems (more details)
- When using GameInput Redistributable, mouse input is not possible in applications and games
The problem concerns applications and games using GameInput Redistributable and Windows 10 2004 (more details)
- Problems updating or starting devices with aksfridge.sys or aksdf.sys
problems arise with devices with applications and drivers that use certain versions of aksfridge.sys and aksdf.sys (more details)
- Problem with old Nvidia drivers (GPU)
errors when using Nvidia display adapter drivers below version 358.00 (more details)