windows-itpro-docs/windows/security/book/includes/virtualization-based-security-enclaves.md

---
author: paolomatarazzo
ms.author: paoloma
ms.date: 12/11/2024
ms.topic: include
---

## :::image type="icon" source="../images/new-button-title.svg" border="false"::: Virtualization-based security enclaves

A **Virtualization-based security enclave** is a software-based trusted execution environment (TEE) inside a host application. VBS enclaves enable developers to use VBS to protect their application's secrets from admin-level attacks.

VBS enclaves are available starting in Windows 11, version 24H2, and Windows Server 2025 on both x64 and ARM64.

[!INCLUDE [learn-more](learn-more.md)]

- [Virtualization-based security enclave](/windows/win32/trusted-execution/vbs-enclaves)