Virtualization Based Security

[lelieee]

I configured the turn on Virtualization Based Security as folows:Select Platform Security Level: Secure Boot and DMA ProtectionVirtualization Based Protection of Code Integrity: Enabled without lockCredential Guard Configuration: Enabled without lockMachine Identity Isolation Configuration: Enabled in enforcement modeSecure Launch Configuration: EnabledKernel-mode Hardware-enforced Stack Protection: Enabled in enforcement modeIs it a good configuration? Is it good to enable Virtualization Based Security? Are there nay downsides? Can I disable it after?

Continue reading...