andrewek 25 Report post Posted June 1 Hello all! I have a general idea about the Isolation of the kernel and the Integrity of the Memory of Windows 10. But here's a question for specialists: how should the configuration of the Integrity of the Memory be by default? On or off? Some authors report that it should be turned off by default in order to avoid various problems (including installing new drivers). Others write that in recent versions of Windows this setting is enabled by default. But how right? or is it individual for each particular system? I also ask because on one system the Integrity of Memory in the Core Isolation is turned on, and on the other it is off! At the same time, both systems (1909) work satisfactorily) What should this default setting be? p.s. sorry, the screen is in Russian, but I hope everything is clear. Probably, this issue is important both for the security of the operating system as a whole, and for the correct installation of Windows updates. Download Image Download Image Quote Share this post Link to post Share on other sites
GT500 807 Report post Posted June 3 Core isolation is off by default on my Windows 10 x64 (1909) system. It's also off on my Windows 10 x64 (2004) VM. 1 Quote Share this post Link to post Share on other sites
andrewek 25 Report post Posted June 3 Hello! Perhaps I should turn it off too? I just don’t know what to do)🙄 On the laptop - on, on a desktop computer - off ... So it was by default, Windows 10х64 (1909) Quote Share this post Link to post Share on other sites
GT500 807 Report post Posted June 3 33 minutes ago, andrewek said: Perhaps I should turn it off too? It's been a long time, however I think there's a possibility of the core isolation feature causing crashes in Emsisoft Anti-Malware. I know it used to cause BSoD's, however from what I am seeing that appears to have been fixed at some point, and about a year ago QA confirmed EAM could run with the option enabled. Quote Share this post Link to post Share on other sites
andrewek 25 Report post Posted June 3 I had crashes ( BSoD) related to AdGuard. After changing the settings AdGuard (related to its network driver) - there are no more failures. Quote Share this post Link to post Share on other sites
GT500 807 Report post Posted June 3 1 minute ago, andrewek said: I had crashes ( BSoD) related to AdGuard. After changing the settings AdGuard (related to its network driver) - there are no more failures. I think that issue was unrelated to core isolation, however you can try turning it off and see if it effects that issue. Quote Share this post Link to post Share on other sites
andrewek 25 Report post Posted June 3 No, no, I have no crash (BSoD) for more than six months. In general, does Core Isolation - really increase system protection or only increase the risk of crash with incompatible devices? Quote Share this post Link to post Share on other sites
GT500 807 Report post Posted June 5 On 6/3/2020 at 2:40 AM, andrewek said: In general, does Core Isolation - really increase system protection or only increase the risk of crash with incompatible devices? From what I'm reading, it should make the system more secure. That being said, Microsoft isn't known for making bug-free features. 1 Quote Share this post Link to post Share on other sites
andrewek 25 Report post Posted June 5 Hello! Yes, I read it. Tell me, if the system works without problems, you can NOT turn Off Core Isolation? It is recommended to disable, if only problems appear, do I understand correctly? Quote Share this post Link to post Share on other sites
GT500 807 Report post Posted June 6 11 hours ago, andrewek said: It is recommended to disable, if only problems appear, do I understand correctly? I'd say turning it either on or off is optional, however Microsoft does seem to think that computers would be more secure with this option turned on. 1 Quote Share this post Link to post Share on other sites
