Educause Security Discussion mailing list archives

Re: Windows 10 Security Profile

From: Brad Judy <brad.judy () CU EDU>
Date: Thu, 10 Mar 2016 23:29:30 +0000

I'd be cautious disabling the SmartScreen filter.  While it does give browsing info to MS, it's also an important 
security feature for blocking phishing/malware sites.  It also isn't new/unique to Windows 10 - it's part of IE in 
other versions of Windows and I think built into the OS for Windows 8 as well.

Brad Judy

Information Security Officer
Office of Information Security
University of Colorado
1800 Grant Street, Suite 300
Denver, CO  80203
Office: (303) 860-4293
Fax: (303) 860-4302
www.cu.edu<http://www.cu.edu/>

[cu-logo_fl]



From: EDUCAUSE Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>> on behalf of 
Homer Manila <homer () american edu<mailto:homer () american edu>>
Reply-To: EDUCAUSE Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>>
Date: Thursday, March 10, 2016 at 4:14 PM
To: EDUCAUSE Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>>
Subject: [SECURITY] Windows 10 Security Profile

All,

We are in the middle of designing a Windows 10 image for the first time and are considering turning the following 
privacy-related settings/features off:

  *   Wifi Sense
  *   Advertising ID
  *   SmartScreen Filter
  *   Location information (or "Let websites provide locally relevant content")
  *   Speech, Inking and Typing
  *   Send MS info about how I write
  *   Feedback and Diagnostics (or at least set Diagnostic and usage data to Basic)

Are other institutions turning off any other privacy settings than these, or think any of these settings are overblown 
as a privacy issue?  We expect Cortana to be a big draw in Windows 10 for our users and are hesitant in turning off any 
feature that would make it less useful (location settings, or any of the Getting To Know me settings).  Additionally, 
SmartScreen Filter seems it could be a nice security feature to have in the Apps store and Edge.

http://lifehacker.com/what-windows-10s-privacy-nightmare-settings-actually-1722267229
http://www.zdnet.com/article/how-to-secure-windows-10-the-paranoids-guide/

Thanks for any feedback!

--Homer Manila, CISSP, GCWN
Information Security Engineer
American University
Office of Information Technology
202-885-2209

AU IT will never ask for your password via e-mail.
Don't share your password with anyone!

Current thread:

Windows 10 Security Profile Homer Manila (Mar 10)
- Re: Windows 10 Security Profile Barton, Robert W. (Mar 10)
- Re: Windows 10 Security Profile Brad Judy (Mar 10)
  - Re: Windows 10 Security Profile Eric Lukens (Mar 11)
    - Re: Windows 10 Security Profile randy (Mar 11)
- Re: Windows 10 Security Profile Velislav K Pavlov (Mar 11)