Deep Freeze (software)

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
Faronics Deep Freeze
Deep freeze.png
Stable release
Windows editions: (Standard Edition), (Enterprise Edition), 1.14.0801 (Cloud Edition), (Server Standard)[1]
Mac edition:[1] / July 30, 2021; 11 months ago (2021-07-30)
Operating systemWindows, Windows Server, macOS
TypeSystem software
LicenseTrialware Edit this at Wikidata

Deep Freeze, by Faronics, is a reboot to restore software application available for the Microsoft Windows, and macOS operating systems which allows system administrators to protect the core operating system and configuration files on a workstation or server by restoring a computer back to the saved configuration, each time the computer is restarted.[2]

Deep Freeze can also protect a computer from harmful malware, since it automatically deletes (or rather, no longer "sees") downloaded files when the computer is restarted. The advantage of using Deep Freeze is that it uses very few system resources, and thus does not slow down computer performance greatly. The disadvantage is that it does not provide real-time protection, therefore an infected computer would have to be restarted in order to remove malware.[3][dead link]

Limitations and security[edit]

Deep Freeze only protects workstations in a "fresh-booted" state. That is, Deep Freeze prevents permanent tampering with protected hard drives/partitions across reboots, but user activity between restarts is not limited by the program. For example, Deep Freeze does not prevent application installation; a user can install a modified version of a Web browser (but seemingly harmless to the unknowing user) designed to secretly send users' passwords to a server connected to the Internet. As a workaround, Deep Freeze can be configured to restart after user logout, shutdown after a chosen period of inactivity, or restart/shutdown at a scheduled time in an attempt to ensure that no such installations are retained (as rebooting the system returns the system to its original, unmodified state).

Deep Freeze cannot protect the operating system and hard drive upon which it is installed if the computer is booted from another medium (such as another bootable partition or internal hard drive, an external hard drive, a USB device, optical media, or network server). In such cases, a user would have real access to the contents of the (supposedly) frozen system.[3] This scenario may be prevented by configuring the CMOS (nonvolatile BIOS memory) on the workstation to boot only to the hard drive to be protected, then password-protecting the CMOS. A further precaution would be to lock the PC case shut with a physical lock or tiedown cable system to prevent access to motherboard jumpers. Failure to take such precautions can compromise the protection provided by the software.

Deep Freeze can protect hard drive partitions of larger than 2 TB capacity (using NTFS).


  1. ^ a b "Deep Freeze Release Notes". Retrieved 2015-09-20.
  2. ^ Faronics Deep Freeze product page
  3. ^ a b The Australian Financial Review (March 10, 2009). "PCs Protected by the Freeze" (PDF). Archived from the original (PDF) on September 28, 2011. Retrieved 2009-03-10.

Further reading[edit]

External links[edit]