10.04.21

Gemini version available ♊︎

Windows Vista Service Pack ’11′ Will Have “Virtualization Based Security” Theater That Slows Down Games Almost 30% and Enables Security Vulnerabilities on Intel Tiger Lake CPUs (Probably Others Too)

Posted in Deception, GNU/Linux, Microsoft, Windows at 2:15 pm by Guest Editorial Team

Guest post by Ryan, reprinted with permission from the original

Windows 11 will have “virtualization based security” theater that slows down games almost 30% and enables security vulnerabilities on Intel Tiger Lake CPUs (probably others).

According to PC Gamer, “Microsoft ‘will be enabling VBS on most new PCs over this next year’ and that can tank PC gaming performance by around 25%.”.

“Nothing Microsoft has ever done has slowed them down for long, and I suspect your svchost will still be svchosting malware in short order.”Where VBS is “Virtualization Based Security”. (Not to be confused with Visual Basic Scripting, which was their scripting language, and what the Melissa and I Love You viruses, along with countless others were written in.)

The interesting facts about VBS (the “security” thing, not the virus scripting language) is that it is designed to wall off “critical parts” of the Windows OS so that it’s harder for malware to inject malicious code into them. But I wouldn’t count out those industrious malware authors. Nothing Microsoft has ever done has slowed them down for long, and I suspect your svchost will still be svchosting malware in short order.

What it does do is cripple performance, at least gaming. Could be one reason why my games run so much better in Wine on Debian 11.

I had turned “VBS” on when I had Windows because it’s in Windows 10, and it didn’t mention anything about performance problems.

To get it to even turn on at all required uninstalling a useless incompatible driver meant for Windows 8 that Windows 10 had brought in from the manufacturer of my old WD EasyStore drive.

“So to enable VBS “security”, you have to make your system impossible to secure against a speculative execution attack, and then in exchange for this, you get to slow your video games down 28%. Wow, sign me up!”So it appears that pretty much all an attacker needs to do in order to shut it off is manage to get a driver that’s written for an earlier version of Windows installed somehow, which shouldn’t be difficult, and then at least in Windows 10 it’s gone and you don’t get an alert(?).

Also, buried in the details are that since this thing relies on Microsoft HyperV, it will stop other virtualization software from running correctly.

And if you look in the Event Viewer (sorry, I didn’t take a picture, I should have), you’ll see that Windows lists CVE numbers belonging to Spectre attacks that it isn’t mitigating because they want the “Hypervisor” to perform well and don’t want to get in the way of Intel’s Hyperthreading, which is being used to speed up HyperV, which is running VBS.

So to enable VBS “security”, you have to make your system impossible to secure against a speculative execution attack, and then in exchange for this, you get to slow your video games down 28%. Wow, sign me up!

“While we are not requiring VBS when upgrading to Windows 11,” explains the post, “we believe the security benefits it offers are so important that we wanted the minimum system requirements to ensure that every PC running Windows 11 can meet the same security the DoD relies on. 

Microsoft

It’s amazing what money can buy. Microsoft bought a Pentagon. Former President Trump was about to hand them “JEDI” to put in their Azure Clown, which has caused so many security disasters for other organizations that we don’t have all day for me to list them.

“Microsoft bribes and “lobbying” got the government to ditch them and weaken them so that Windows could get government contracts.”In the 1980s and 1990s, there were these security standards that the US government still used called the Rainbow Books, which pretty much only a UNIX system could provide. Microsoft bribes and “lobbying” got the government to ditch them and weaken them so that Windows could get government contracts.

Then in exchange for bringing Windows in, we got the “smart ship” stuck at port due to a Windows NT crash, worm mess on Windows 2000 and XP (which didn’t even enable the software firewall in the first release and logged everyone in as Administrator or apps broke, and had raw sockets for normal users), Vista LULZ (and their current operating systems are still basically Vista service packs), and everything else that Windows has brought with it but to name a few.

It’s time to bring real standards back to computing.

Microsoft is better at public corruption than they are with security, as you can no doubt see.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New


  1. Society Needs to Take Back Computing, Data, and Networks

    Why GemText needs to become 'the new HTML' (but remain very simple) in order for cyberspace to be taken away from state-connected and military-funded corporations that spy on people and abuse society at large



  2. [Meme] Meanwhile in Austria...

    With lobbyists-led leadership one might be led to believe that a treaty strictly requiring ratification by the UK is somehow feasible (even if technically and legally it's moot already)



  3. The EPO's Web Site is a Parade of Endless Lies and Celebration of Gross Violations of the Law

    The EPO's noise site (formerly it had a "news" section, but it has not been honest for about a decade) is a torrent of lies, cover-up, and promotion of crimes; maybe the lies are obvious for everybody to see (at least EPO insiders), but nevertheless a rebuttal seems necessary



  4. The Letter EPO Management Does Not Want Applicants to See (or Respond to)

    A letter from the Munich Staff Committee at the EPO highlights the worrying extent of neglect of patent quality under Benoît Battistelli and António Campinos; the management of the EPO did not even bother replying to that letter (instead it was busy outsourcing the EPO to Microsoft)



  5. IRC Proceedings: Saturday, December 04, 2021

    IRC logs for Saturday, December 04, 2021



  6. EPO-Bribed IAM 'Media' Has Praised Quality, Which Even EPO Staff (Examiners) Does Not Praise

    It's easy to see something is terribly wrong when the people who do the actual work do not agree with the media's praise of their work (a praise motivated by a nefarious, alternate agenda)



  7. Tux Machines is 17.5 Years Old Today

    Tux Machines -- our 'sister site' for GNU/Linux news -- started in 2004. We're soon entering 2022.



  8. Approaching 100

    We'll soon have 100 files in Git; if that matters at all...



  9. Improving Gemini by Posting IRC Logs (and Scrollback) as GemText

    Our adoption of Gemini and of GemText increases; with nearly 100,000 page requests in the first 3 days of Decembe (over gemini://) it’s clear that the growing potential of the protocol is realised, hence the rapid growth too; Gemini is great for self-hosting, which is in turn essential when publishing suppressed and controversial information (subject to censorship through blackmail and other ‘creative’ means)



  10. Links 4/12/2021: IPFire 2.27 Core Update 162 and Genode OS Framework 21.11

    Links for the day



  11. Links 4/12/2021: Gedit Plans and More

    Links for the day



  12. Links 4/12/2021: Turnip Becomes Vulkan 1.1 Conformant

    Links for the day



  13. IRC Proceedings: Friday, December 03, 2021

    IRC logs for Friday, December 03, 2021



  14. Links 4/12/2021: EndeavourOS Atlantis, Krita 5.0.0 Beta 5, Istio 1.11.5, and Wine 6.23; International Day Against DRM (IDAD) on December 10th

    Links for the day



  15. Another Gemini Milestone: 1,500 Active Capsules

    This page from Balázs Botond plots a graph, based on these statistics that now (as of minutes ago) say: “We successfully connected recently to 1500 of them.” Less than a fortnight ago more than 1,800 capsules overall were registered by Lupa, almost quadrupling in a single year



  16. [Meme] António Campinos and Socialist Posturing

    Staff of the EPO isn’t as gullible as António Campinos needs it to be



  17. António Campinos as EPO President is Considered Worse Than Benoît Battistelli (in Some Regards) After 3.5 Years in Europe's Second-Largest Institution

    The EPO's demise at the hands of people who don't understand patents and don't care what the EPO exists for is a real crisis which European media is unwilling to even speak about; today we share some internal publications and comment on them



  18. Media Coverage for Sale

    Today we're highlighting a couple of new examples (there are many other examples which can be found any day of the year) demonstrating that the World Wide Web is like a corporate spamfarm in "news" clothing



  19. Links 3/12/2021: GNU Poke 1.4 and KDDockWidgets 1.5.0

    Links for the day



  20. IRC Proceedings: Thursday, December 02, 2021

    IRC logs for Thursday, December 02, 2021



  21. Links 3/12/2021: Nitrux 1.7.1 and Xen 4.16 Released

    Links for the day



  22. Links 2/12/2021: OpenSUSE Leap 15.4 Alpha, Qt Creator 6

    Links for the day



  23. The EPO's “Gender Awareness Report”

    There’s a new document with remarks by the EPO’s staff representatives and it concerns opportunities for women at the EPO — a longstanding issue



  24. IRC Proceedings: Wednesday, December 01, 2021

    IRC logs for Wednesday, December 01, 2021



  25. EPO Staff Committee Compares the Tactics of António Campinos to Benoît Battistelli's

    The Central Staff Committee (CSC) of the EPO talks about EPO President António Campinos, arguing that “he seems to subscribe to the Manichean view, introduced by Mr Battistelli…”



  26. Prof. Thomas Jaeger in GRUR: Unified Patent Court (UPC) “Incompatible With EU Law“

    The truth remains unquestionable and the law remains unchanged; Team UPC is living in another universe, unable to accept that what it is scheming will inevitably face high-level legal challenges (shall that become necessary) and it will lose because the facts are all still the same



  27. Links 1/12/2021: LibrePlanet CFS Extended to December 15th and DB Comparer for PostgreSQL Reaches 5.0

    Links for the day



  28. EPO Cannot and Will Not Self-Regulate

    The term financialisation helps describe some of the activities of the EPO in recent years; see Wikipedia on financialisation below



  29. [Meme] Germany's Licence to Break the Law

    Remember that the young Campinos asked dad for his immunity after he had gotten drunk and crashed the car; maybe the EPO should stop giving diplomatic immunity to people, seeing what criminals (e.g. Benoît Battistelli) this attracts; the German government is destroying its image (and the EU’s) by fostering such corruption, wrongly believing that it’s worth it because of Eurozone domination for patents/litigation



  30. EPO Dislikes Science and Scientists

    The EPO's management has become like a corrupt political party with blind faith in money and monopolies (or monopoly money); it has lost sight of its original goals and at this moment it serves to exacerbate an awful pandemic, as the video above explains


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts