Technology

59128 readers

2443 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

300

Microsoft is enabling BitLocker device encryption by default on Windows 11 (www.theverge.com)

submitted 2 months ago by mr_MADAFAKA@lemmy.ml to c/technology@lemmy.world

115 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] wizardbeard@lemmy.dbzer0.com 50 points 2 months ago (1 children)

Yeah, this makes sense for corporate environments with keys backed up to a centralized location like Active Directory. Not for consumers with no reasonable way to keep some key like this in a safe place as a "break glass in case of emergency" option.

[–] Romkslrqusz@lemm.ee 43 points 2 months ago (2 children)

It backs up to the Microsoft Account

Still, some people create an @outlook.com email, set up no recovery options, forget the password, and find themselves locked out.

[–] catloaf@lemm.ee 10 points 2 months ago (3 children)

How do you get to your Microsoft account when your computer is locked?

[–] AnyOldName3@lemmy.world 14 points 2 months ago (1 children)

If you're doing things properly, you'll know your Microsoft account password or have it in a password manager (and maybe have other account recovery options available like getting a password reset email etc.), and have a separate password for the PC you're locked out of, which would be the thing you'd forgotten. If someone isn't computer-literate, it's totally plausible that they'd forget both passwords, have no password manager, and not have set up a recovery email address, and they'd lose all their data if they couldn't get into their machine.

[–] catloaf@lemm.ee 2 points 2 months ago (1 children)

Even if you have your Microsoft account password, it doesn't help when you can't even boot into Windows.

[–] 9point6@lemmy.world 12 points 2 months ago* (last edited 2 months ago) (1 children)

Most people have smartphones these days where they would be able to log into their account and grab the recovery key if it's backed up. If they don't have a phone, they will know someone that does, or a library with a computer.

Bear in mind that non-techy users don't get the option to opt out of a Microsoft account in the OOBE now, so most should have their key backed up without thinking about it

[–] catloaf@lemm.ee 3 points 2 months ago (1 children)

Do they also know their password? Hopefully they didn't save it on the PC that is now locked (a lot of them probably did, if they saved it at all).

[–] 9point6@lemmy.world 11 points 2 months ago

A Microsoft password is more recoverable than a lost bitlocker recovery key.

Also, it feels worth highlighting that every other OS targeted at general consumers encrypts user data by default. Microsoft is really just getting up to speed with where everyone else was like 5 years ago.

[–] T00l_shed@lemmy.world 7 points 2 months ago (1 children)

Many people will have access to a secondary device, not all of course.

[–] halcyoncmdr@lemmy.world 6 points 2 months ago

Almost everyone has access to a phone. Most governments, including the US provide free or low cost smartphones to those who can't afford it. There are entire MVNO carriers based around this, like Assurance wireless.

[–] lud@lemm.ee 6 points 2 months ago

A phone or another computer?

[–] exu@feditown.com 5 points 2 months ago

Microsoft fucked that up in the Home edition, where the key in your account won't work.

Timestamp 8:48 in this video
https://youtu.be/pIRNpDvGF4w