Windows 11 Aims for Enhanced Security with Properly Signed Apps and Drivers

Microsoft is set to enhance the security of Windows 11 by implementing a system that will allow only properly signed apps and drivers to run by default. This initiative aims to make the operating system more robust against malware and unauthorized modifications.

Windows 11’s New Security Approach

On February 9, 2026, Microsoft announced new security measures in a blog post. The company observed a troubling trend of apps overriding system settings and installing unwanted software. Windows 11 will adopt a “consent-first” model, ensuring users have control over app permissions.

Windows Baseline Security Mode

• Only properly signed applications, services, and drivers will be allowed to run.
• Runtime integrity safeguards will be enabled by default, a significant shift from current practices.
• Active verification of software integrity will prevent unsigned or untrusted apps from executing unless explicitly permitted.

This new Baseline Security Mode aims to tighten security at a foundational level. Windows will monitor and verify all running software in real-time, preventing malware from exploiting system vulnerabilities.

User Transparency and Consent

In addition to stricter app permissions, Microsoft is overhauling its permission system. The User Transparency and Consent model will prompt users for approval when apps attempt to access sensitive data, such as files and camera controls. This approach mirrors the permission practices established in mobile operating systems.

• Clear and actionable prompts will inform users about app activities.
• Users can later review and modify these permissions from a centralized location.

Gradual Implementation and Developer Support

The transition to Windows Baseline Security Mode and User Transparency and Consent will be methodical. Microsoft plans to roll out these features in stages to ensure a smooth implementation for users and developers alike.

• Users and IT administrators will be provided insights into app behaviors and permissions.
• Developers will receive tools and documentation to adapt their software to the new security model.

Impact on Enterprises and the Ecosystem

This security overhaul benefits both ordinary users and enterprises. IT administrators will gain better visibility into device activities, helping to identify potential risks. Major partners like Adobe and CrowdStrike support this initiative as it moves Windows toward greater security.

While Microsoft enhances security, it reassures users that the platform will remain open. Users can still install virtually any application, and developers can distribute software outside the Microsoft Store. This dual approach aims for a balance between security and flexibility.

Ultimately, if Microsoft successfully implements these changes, it could significantly reduce the prevalence of traditional malware, marking a pivotal point in Windows 11’s evolution while bolstering user trust and system integrity.