JOURNAL ARTICLE

Crowdstrike and Kernel-Level Access.

  • Published In: ITNOW, 2024, v. 66, n. 4. P. 58 1 of 3

  • Database: Applied Science & Technology Source Ultimate 2 of 3

  • Authored By: Harrison, Anthony 3 of 3

Abstract

This article examines the implications of kernel-level access for security software in Microsoft’s Windows operating system, prompted by the July 2024 CrowdStrike incident that caused widespread system crashes. Kernel-level access allows security vendors to monitor system activity deeply but carries risks such as privilege escalation, system instability, and data theft. Microsoft’s historically permissive approach contrasts with the more restrictive “walled garden” models of Linux and macOS, which limit kernel access to trusted modules. The incident highlights the need for careful oversight and consideration of alternative security methods that balance protection with system stability.

Additional Information

  • Source:ITNOW. 2024/12, Vol. 66, Issue 4, p58
  • Document Type:Article
  • Subject Area:Computer Science
  • Publication Date:2024
  • ISSN:17465702
  • DOI:10.1093/itnow/bwae135
  • Accession Number:181970435
  • Copyright Statement:Copyright of ITNOW is the property of Oxford University Press / USA and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Looking to go deeper into this topic? Look for more articles on EBSCOhost.