deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-14 22:37:22 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

Update next-gen-behavior-blocking.md

Browse Source
This commit is contained in:
Denise Vangel-MSFT 2020-03-09 14:42:22 -07:00
parent c035eb52f7
commit bc2cc1d873
1 changed files with 5 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
windows/security/threat-protection/windows-defender-antivirus/next-gen-behavior-blocking.md
View File

@ -24,15 +24,14 @@ ms.collection:
## What is behavioral blocking?
Behavioral blocking and containment capabilities in Microsoft Defender ATP use machine learning to identify threats through behavioral patterns. When threats are detected, they are monitored, processed, classified by machine learning, and blocked, almost instantly.
Behavioral blocking and containment capabilities in Microsoft Defender ATP use machine learning to identify threats through behavioral patterns. When threats are detected, they are monitored, processed, classified by machine learning, and blocked, almost instantly. Windows Defender Antivirus on your machine works together with Microsoft Defender ATP to offer this protection.
> [!TIP]
> See [In hot pursuit of elusive threats: AI-driven behavior-based blocking stops attacks in their tracks](https://www.microsoft.com/security/blog/2019/10/08/in-hot-pursuit-of-elusive-threats-ai-driven-behavior-based-blocking-stops-attacks-in-their-tracks).
Windows Defender Antivirus on your machine works together with Microsoft Defender ATP to offer this protection. Behavioral blocking is a post-execution protection, as shown in the following diagram:
Behavioral blocking is a post-execution protection, as shown in the following diagram:
![diagram of pre and post execution protection](images/pre-execution-and-post-execution-detection-engines.png)
See [In hot pursuit of elusive threats: AI-driven behavior-based blocking stops attacks in their tracks](https://www.microsoft.com/security/blog/2019/10/08/in-hot-pursuit-of-elusive-threats-ai-driven-behavior-based-blocking-stops-attacks-in-their-tracks).
## Components of behavioral blocking
Behavioral blocking consists of the following components:
@ -43,9 +42,8 @@ Behavioral blocking consists of the following components:
- Client-side behavioral blocking
- Containment during automated investigation and remediation
## Next steps
- [Deploy Microsoft Defender ATP baselines](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-machines-security-baseline)
- [Learn more about shadow protection](shadow-protection.md)
- [Turn on shadow protection](shadow-protection.md)