I’d say it’s a bad thing because it’s the wrong threat model as a default.
More home users are in scenarios like “I spilled a can of Diet Sprite into my laptop, can someone yank the SSD and recover my cat pictures” than “Someone stole my laptop and has physical access to state secrets that Hegseth has yet to blurt on Twitch chat”. Encryption makes the first scenario a lot harder to easily recover from, and people with explicit high security needs should opt into it or have organization-managed configs.
I agree, the encryption should be deliberate choice. And we’ve said nothing yet about the impact on performance.
You used to almost be forced to make a recovery CD or USB when encrypting a drive, now people don’t even know how ‘important’ the MS account actually is.
I’d say it’s a bad thing because it’s the wrong threat model as a default.
More home users are in scenarios like “I spilled a can of Diet Sprite into my laptop, can someone yank the SSD and recover my cat pictures” than “Someone stole my laptop and has physical access to state secrets that Hegseth has yet to blurt on Twitch chat”. Encryption makes the first scenario a lot harder to easily recover from, and people with explicit high security needs should opt into it or have organization-managed configs.
Thanks for making me laugh. It’s been a while.
I agree, the encryption should be deliberate choice. And we’ve said nothing yet about the impact on performance.
You used to almost be forced to make a recovery CD or USB when encrypting a drive, now people don’t even know how ‘important’ the MS account actually is.