Microsoft is deprecating Defender Application Guard (including the Windows Isolated App Launcher APIs) for Edge for Business users. Defender Application Guard (MDAG) is a security feature that opens potential threats in a secure sandbox using hardware-based virtualization, aiming to render current attack methods obsolete. However, it will no longer be updated for Edge for Business, and Microsoft suggests users explore security capabilities in its Edge for Business web browser.
Defender Application Guard in Edge provides protection by automatically opening untrusted sites in isolated Hyper-V-enabled containers, preventing potential malware infections. Admins can define trusted websites and cloud resources to enhance security. This move follows Microsoft’s recent deprecation of Defender Application Guard for Office, which was introduced in April 2019 and is part of the company’s strategy to streamline its security offerings. Microsoft advises users to switch to alternative security measures like Defender for Endpoint attack surface reduction rules, Protected View, and Windows Defender Application Control.
The company is also discontinuing VBScript in future Windows releases and removing insecure TLS 1.0 and 1.1 protocols. The deprecation aligns with Microsoft’s ongoing efforts to enhance security protocols, although it may require users to adopt alternative security solutions provided by the tech giant. In summary, the deprecation of Defender Application Guard in Edge for Business is part of Microsoft’s broader strategy to streamline security offerings and encourage users to adopt alternative security measures.
This move comes after the deprecation of a similar feature in Office, aligning with Microsoft’s focus on enhancing overall security protocols. Users are advised to explore other security capabilities in Edge for Business and transition to alternative security measures provided by Microsoft.
Reference
- Microsoft Phases Out Defender Application Guard for Edge Business Users
