Valve, the owner of the platform for the distribution of games and Steam, has introduced new requirements for developers. They are now obliged to disclose the use of anti-test systems operating at the kernel level of the operating system. This change was made in response to requests from players and developers who are seeking more transparency regarding protection from cheats and additional software installed alongside games. Such anti-system systems possess high levels of privileges that can pose significant risks to system safety.
Developers publishing new games on Steam must now indicate the presence of anti-theft systems working at the kernel level. This information will be displayed on the game page on Steam, enabling users to view information about protection systems before installing the game. Valve also plans to review existing games and contact partners if they are found to be using anti-theft systems with kernel-level access. Developers have the option to disclose information about anti-theft technologies working on the server side or not requiring kernel privileges, but Valve recommends including such information since users find it useful.
Valve has also updated the requirements for file deletion during game uninstallation. Developers of new projects must implement uninstall scenarios that completely remove created or modified files during installation. This requirement is aimed at addressing concerns raised by certain anti-theft systems, especially those operating at the kernel level, which may leave files behind after the game is uninstalled, alarming users.
The use of anti-theft technologies, especially those with kernel-level access, has been linked to incidents demonstrating the risks involved. For instance, in 2022, a vulnerability in the defense system of Dark Souls 3 allowed attackers to execute remote code on other people’s devices, leading developers to temporarily disable servers for the PVP mode. In 2024, the Crowdstrike security tool, operating at the kernel level, caused widespread system failures globally.