App sandboxing in Windows Phone 8 helps prevent malicious apps from gaining unauthorized access to data, and provides a trustworthy platform for business apps.
Secure chambers model
The Windows Phone 8 security model utilizes a chamber concept. The model ensures each chamber has a least privilege configuration and an isolation boundary within which a process can run.
Windows Phone 8 operating system services and apps are signed with a Microsoft certificate. This approach helps protect against malware and helps ensure that only trusted code can run.
App certification and validation
We review every app and ensure it meets our security criteria before publication in the Windows Phone Store, making sure it won’t compromise the security or functionality of the phone.
One source for phone updates
The Windows Phone update service is the only source for updates to the Windows Phone 8 operating system. We've also developed security review processes to deliver critical updates globally if high-impact vulnerabilities are discovered.
Access to a Windows Phone can be controlled through a PIN or password used to unlock the phone. Windows Phone 8 supports both alphanumeric and complex passwords.
If a Windows Phone 8 is lost or stolen, administrators can initiate a remote wipe of the phone, or users can do a remote wipe via Find My Phone or Outlook Web App.
Data and storage
Information Rights Management
Windows Phone 8 comes with full Information Rights Management (IRM) support, which helps protect emails and documents from unauthorized distribution and can help prevent your organization's intellectual property from being leaked.
Windows Phone 8 offers data sync via SSL 3.0 plus AES 128- or 256-bit encryption to help ensure that all communication with corporate servers is adequately protected.
Phone encryption with BitLocker technology
Windows Phone 8 delivers hardware-assisted encryption of the entire phone, including the operating system and data files, which helps keep everything from corporate data to passwords safe and secure.