Microsoft is enabling BitLocker device encryption by default on Windows 11

alessandro ( @alessandro@lemmy.ca ) · 8 months ago

Microsoft is enabling BitLocker device encryption by default on Windows 11

nomad ( @Nomad@infosec.pub ) · 8 months ago

Why? Because local data recovery will be that much harder, forcing people into online backups with Microsoft

henfredemars ( @henfredemars@infosec.pub ) · 8 months ago

Device encryption is designed to improve the security of Windows machines by automatically enabling BitLocker encryption on the Windows install drive and backing up the recovery key to a Microsoft account or Entra ID.

Once again, Microsoft is missing the importance of consent both in forcing the encryption and in not giving users a choice in who holds the keys to your data.

JackbyDev ( @JackbyDev@programming.dev ) · 8 months ago

OneDrive mysteriously moving and deleting your data without permission. BitLocker encrypting it without permission. What’s next?

taanegl ( @taanegl@beehaw.org ) · 6 months ago

Just randomly encrypting your application executables and forcing you to run the application inside a Windows VM on Azure - and paying for it, a.k.a Execution as a Service (or EaaS for short)…

I’m not even joking, that could happen.

Nik282000 ( @nik282000@lemmy.ca ) · edit-2 8 months ago

You can avoid device encryption by using ~~a local account~~ Linux.

Romkslrqusz ( @Romkslrqusz@lemm.ee ) · 8 months ago

This isn’t news, this has already been the case since Windows 10 1803 back in 2018.