Well that’s at least a completely different kind of regulatory failure than the one that was proposed on Twitter. But this is probably motivated reasoning on Microsoft’s part. Kernel access is only necessary for IDS because of Microsoft’s design choices. If Microsoft wanted, they could also have exported a user API for IDS services, which is a project they are working on now. MacOS already has this! And Microsoft would never ever have done as good a job on their own if they hadn’t faced competition from other companies, which is why everyone uses CrowdStrike in the first place.
Well that’s at least a completely different kind of regulatory failure than the one that was proposed on Twitter. But this is probably motivated reasoning on Microsoft’s part. Kernel access is only necessary for IDS because of Microsoft’s design choices. If Microsoft wanted, they could also have exported a user API for IDS services, which is a project they are working on now. MacOS already has this! And Microsoft would never ever have done as good a job on their own if they hadn’t faced competition from other companies, which is why everyone uses CrowdStrike in the first place.