From b59d7cc3743cdbc1f57d3fb592c24fda11b5f7d0 Mon Sep 17 00:00:00 2001
From: Patti Short <Patti.Short@microsoft.com>
Date: Tue, 31 Jul 2018 23:55:33 +0000
Subject: [PATCH] Updated how-hardware-based-containers-help-protect-windows.md

---
 .../how-hardware-based-containers-help-protect-windows.md     | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/how-hardware-based-containers-help-protect-windows.md b/windows/security/identity-protection/how-hardware-based-containers-help-protect-windows.md
index 7cb2ae0095..bc28e62e7a 100644
--- a/windows/security/identity-protection/how-hardware-based-containers-help-protect-windows.md
+++ b/windows/security/identity-protection/how-hardware-based-containers-help-protect-windows.md
@@ -31,7 +31,7 @@ After successful verification and startup of the device’s firmware and Windows
 
 This is where Windows Defender System Guard protection begins with its ability to ensure that only properly signed and secure Windows files and drivers, including third party, can start on the device. At the end of the Windows boot process, System Guard will start the system’s antimalware solution, which scans all third party drivers, at which point the system boot process is completed. In the end, Windows Defender System Guard helps ensure that the system securely boots with integrity and that it hasn’t been compromised before the remainder of your system defenses start.
 
-![Boot time integrity](images/windows-defender-system-guard-boot-time-integrity.png)
+![Boot time integrity](../hardware-protection/images/windows-defender-system-guard-boot-time-integrity.png)
 
 ## Maintaining integrity of the system after it’s running (run time)
 
@@ -47,5 +47,5 @@ While Windows Defender System Guard provides advanced protection that will help
 
 As Windows 10 boots, a series of integrity measurements are taken by Windows Defender System Guard using the device’s Trusted Platform Module 2.0 (TPM 2.0). This process and data are hardware-isolated away from Windows to help ensure that the measurement data is not subject to the type of tampering that could happen if the platform was compromised. From here, the measurements can be used to determine the integrity of the device’s firmware, hardware configuration state, and Windows boot-related components, just to name a few. After the system boots, Windows Defender System Guard signs and seals these measurements using the TPM. Upon request, a management system like Intune or System Center Configuration Manager can acquire them for remote analysis. If Windows Defender System Guard indicates that the device lacks integrity, the management system can take a series of actions, such as denying the device access to resources.
 
-![Windows Defender System Guard](images/windows-defender-system-guard-validate-system-integrity.png) 
+![Windows Defender System Guard](../hardware-protection/images/windows-defender-system-guard-validate-system-integrity.png)