Image

Image

- Windows 10 compatibility
- Improved configuration of various mitigations via GPO
- Improved writing of the mitigations to the registry, making it easier to leverage existing tools to manage EMET mitigations via GPO
- EAF/EAF+ performance improvements
- Untrusted font mitigation for Windows 10
"EMET was released in 2009 as a standalone tool to help enterprises better protect their Windows clients by providing an interface to manage built-in Windows security mitigations while also providing additional features meant to disrupt known attack vectors used by prevalent malware. Since that time, we have made substantial improvements to the security of the browser and the core OS. With Windows 10 we have implemented many features and mitigations that can make EMET unnecessary on devices running Windows 10. EMET is most useful to help protect down-level systems, legacy applications, and to provide Control Flow Guard (CFG) protection for 3rd party software that may not yet be recompiled using CFG."Microsoft points out that Windows 10 features such as Device Guard (which can lock a device down so only trusted applications can run), Control Flow Guard and AppLocker actually provide equivalent of better mitigations than EMET. And, of course, Windows 10's Edge browser is considered to be significantly more secure than the often beleaguered Internet Explorer. because every single web page you visit opens in its own "app container", effectively sandboxing threats. Do you use Microsoft EMET in your organisation? Have you found it an effective way to better protect your company, or did you find it caused additional problems? Leave a comment below with your experiences. Editor’s Note: The opinions expressed in this guest author article are solely those of the contributor, and do not necessarily reflect those of Tripwire, Inc.