Get all your news in one place.
100’s of premium titles.
One app.
Start reading
TechRadar
TechRadar
Craig Hale

Microsoft blames EU rules for its inability to lock down Windows following CrowdStrike incident

A building at the Microsoft Headquarters campus in Redmond, Washington (2014).

Microsoft is reportedly analyzing whether restrictions enforced by the European Commission could be partly responsible for amplifying issues with Windows systems during the recent CrowdStrike outage incident.

The Wall Street Journal (WSJ) notes that in an intriguing point concerning the security of Windows operating systems, Microsoft’s spokesperson pointed out a 2009 agreement with the Commission prevented the company from enhancing the OS's security more rigorously. 

The agreement came in response to a complaint, and required Microsoft to offer security software developers the same level of access to Windows as the company itself has.

Microsoft claims European Commission hinders security

The decision, intended to encourage competition, inadvertently allowed third-party vendors to disrupt systems.

The agreement specifies that Microsoft must share its APIs for Windows Client and Server operating systems with third-party security software developers, but last week’s incident highlighted the risks of such openness.

On the flip side, Apple has been restricting developers from kernel-level access to its OSs since 2020. Google is also not bound by similar regulations.

Despite the clear security benefits of an OS lock down, the EU is unlikely to grant Microsoft permission to restrict certain developer access given its previous decision. The Commission has also been keeping a close eye on Microsoft in recent months, with two major antitrust cases relating to the bundling of Teams within Microsoft 365 and the company’s cloud market dominance hitting the headlines.

Microsoft’s dissatisfaction with the European Commission comes days after a CrowdStrike update accidentally broke 8.5 million Windows PCs globally, which prompted Microsoft to intervene by giving affected users access to an auto-fix tool.

TechRadar Pro has offered Microsoft an opportunity to share further context, but the company did not immediately respond.

More from TechRadar Pro

Sign up to read this article
Read news from 100’s of titles, curated specifically for you.
Already a member? Sign in here
Related Stories
Top stories on inkl right now
One subscription that gives you access to news from hundreds of sites
Already a member? Sign in here
Our Picks
Fourteen days free
Download the app
One app. One membership.
100+ trusted global sources.