Windows 10 build 18305 is a interim release as Microsoft continues to develop the next milestone release for 2019. Microsoft has indicated the next build will be released in 2019 in time for the bug hunt.
A simplified default Start layout for new devices, new user accounts, and clean installs. The new layout has been simplified into a sleek one column design with reduced top-level tiles. For the IT admins out there, don’t worry, commercial and education customers will also see a simplified layout tailored to these scenarios.
Windows Sandbox is a new lightweight desktop environment tailored for safely running applications in isolation.
How many times have you downloaded an executable file, but were afraid to run it? Have you ever been in a situation which required a clean installation of Windows, but didn’t want to set up a virtual machine?
At Microsoft, we regularly encounter these situations, so we developed Windows Sandbox: an isolated desktop environment where you can run untrusted software without the fear of lasting impact to your device. Any software installed in Windows Sandbox stays only in the sandbox and cannot affect your host. Once Windows Sandbox is closed, all the software with all of its files and state are permanently deleted.
Windows Sandbox has the following properties:
- Part of Windows – everything required for this feature ships with Windows 10 Pro and Enterprise. No need to download a VHD!
- Pristine – every time Windows Sandbox runs, it’s as clean as a brand-new installation of Windows
- Disposable – nothing persists on the device; everything is discarded after you close the application
- Secure – uses hardware-based virtualization for kernel isolation, which relies on the Microsoft Hypervisor to run a separate kernel which isolates Windows Sandbox from the host
- Efficient – uses integrated kernel scheduler, smart memory management, and virtual GPU
The sandbox works better with a more recent machine with additional main memory. This allows Windows to use more components in the sandbox which is close to a complete virtual machine environment.
Windows has a new protection history, something that should have been present long ago so that users can track issues over time. It is also helpful for administrators who may be monitoring security with staff.
Tamper Protection is a new setting from Windows Defender Antivirus, available in the Windows Security app, which when on, provides additional protections against changes to key security features, including limiting changes which are not made directly through the Windows Security app. You can find this setting under Windows Security > Virus & Threat Protection > Virus & Threat Protection Settings.
- When Windows Sandbox is first installed and on every servicing event a setup process will run and trigger significant CPU and disk activity for a minute or so.
- Opening the Start menu in Windows Sandbox takes some time and some Start Menu apps will not run.
- The time zone is not synchronized between Windows Sandbox and the host.
- Windows Sandbox does not support installers which require reboot.
- The Microsoft Store is not supported in Windows Sandbox.
- Windows Sandbox does not support high dpi displays very well.
- Windows Sandbox does not fully support multi-monitor configurations.