Hardware Management and Security

Windows Server 2008 introduced Windows Hardware Error Architecture (WHEA) as a common infrastructure for handling hardware errors.

WHEA uses richer error reporting to reduce mean time to recovery for fatal hardware errors and uses hardware health monitoring to reduce system crashes. These advances supplement support in Windows for solutions that use system management BIOS (SMBIOS), Web Services for Management (WS-Management), and Windows Management Instrumentation (WMI).

We recommend that system designers consider Windows BitLocker drive encryption, together with Trusted Platform Module version 1.2 (TPM 1.2), for both mobile and server systems.

In this section


Driver signing guidelines for ISVs

Your company's quality assurance processes are responsible for testing driver functionality during product development. When the driver is complete, you can verify that the driver is compatible with Windows and submit it to the Windows Certification Program for certification or signature. Any signed drivers may be distributed on Windows Update, regardless of whether the signature is obtained through certification or unclassified testing.

Secured Boot and Measured Boot: Hardening Early Boot Components Against Malware

Download information about the early boot protection features for Windows operating systems, with guidelines for anti-malware and other security solution developers to develop security solutions to protect early boot components from malware.

Smart Card Minidriver Certification Requirements

These papers specify the cryptographic operations requirements for smart card minidrivers that individual hardware vendors must meet in order to receive the Designed for Windows Logo.

Threat modeling for drivers

Driver writers and architects should make threat modeling an integral part of the design process for any driver. This article provides guidelines for creating threat models for drivers for the Microsoft Windows family of operating systems.

Trusted Platform Module (TPM) and BitLocker Drive Encryption

This section provides links to information about the Windows BitLocker Drive Encryption feature and about Trusted Platform Module (TPM) hardware.

Windows security model: what every driver writer needs to know

This article provides information about writing secure kernel-mode drivers for the Microsoft Windows family of operating systems. It describes how the Windows security model applies to drivers and explains what driver writers must do to ensure the security of their devices.


See also

Windows Hardware Error Architecture (WHEA)
Windows Management Instrumentation (WMI)
Windows Remote Management
Implementing WMI (Driver development)
WMI Resources



Send comments about this topic to Microsoft