The Case For Our Method#
Below we outline the reasoning behind our methodology, particularly in regards to the AME Playbooks.
Ubiquitous Normalization Of Data Collection#
When Microsoft released Windows 10 on July 29th 2015, it solidified its position in providing an operating system which undermined basic human rights with respect to privacy and overall system control. A shift towards an unjust source of power, via Windows Update and various other subsystems, amalgamated in a poorly designed user interface focused on cognitive ease and commercial advertising: This was to become the new era of computing. It’s important to remark, that due to Windows 10’s update mechanics, combined with Microsoft’s decision of abolishing its testing division for update distribution, a stock system is extremely unpredictable and subject to an ever-shifting, uncontrollable state of disarray - but nevertheless vulnerable to leaked back-doors, in cooperation with the NSA - seriously undermining and questioning the validity of the official narrative’s claim to security and progress.
Source - www.eff.org, Source - autoriteitpersoonsgegevens.nl
[…] this program is an instrument of unjust power…. Sometimes it tracks the user… and sometimes they can even forcibly change the software at a distance, as Microsoft can with Windows, through the universal backdoor.- Richard M. Stallman, at TEDxGeneva 2014
Our Deletion Methodology#
[…] As you can see, even the recommended method for eliminating data collection isn’t completely effective and causes a number of problems […] don’t install anything, and don’t use your computer, the data sent to Microsoft is quite minimal.- Mark Burnett, xato.net, May 2017
In May 2017 a security researcher named Mark Burnett demonstrated that disabling the default data collection toggles, found in Windows 10’s settings app, are entirely useless. Furthermore he showed that even through using intensive group policy modifications, in a process heavily scrutinized and iterated upon over several days, he was not able to prevent Windows 10 from sending critical, personally identifiable information with certainty.
Source - www.xato.net, Archived Source- www.theinquirer.net
In conclusion, it appears to be extremely difficult to genuinely disable data collection, as proven to be monitorable in a controlled environment, where a constant uncertainty, subject to change by Microsoft’s backdoor via Windows Update, plagues any methodology of mitigation, when making use of the built-in tools of Windows 10 such as the basic Privacy settings, gpedit modifications or registry edits. The only logical and unfortunately required method in this scenario, is the removal of the affected services from the system entirely, along with Windows Update.
Windows Update And Security Concerns#
Due to the modified nature of this Windows installation, there are various possible security and stability concerns to consider when using Windows 10 AME. The entire removal of the Windows 10 update subsystem, coupled with the lack of automatic driver detection, beyond what is included in the 1809 build of Windows 10 from late 2018, requires some special techniques in order to configure proper and safe operation.
Since the release of Windows 10, various security patches have been pushed to fix critical vulnerabilities, via Windows update distribution. These patches are not available for AME, as this subsystem has been disabled. In order to secure the system properly, we revoke administrator privileges from all normal users, and activate the hidden administrator account. This will mediate approximately 75% of the critical attack surface, while locking down the system from most foreseeable major future threats.
Archived Source - www.beyondtrust.com, Source - www.tenforums.com
The use of networked Windows file-sharing using the SMB protocol, which, since the release of build 1511, has been hijacked for various large-scale exploits, such as the famed WannaCry ransomware attack, yet still showing extensive vulnerabilities, surfacing even today, should only be used in a user controlled, secured network environment, as this protocol has proven to be largely apprehensive by age of its design. SFTP is strongly recommended for networked file transfers.
Source - techcommunity.microsoft.com
It is critical to understand, that Windows, regardless of its modernity and patched state, has proven to not be a secure platform. If security is one of your primary concerns, you should not be using AME, or Windows in general.