Tested: Windows 11 Pro’s On-By-Default Encryption Slows SSDs Up to 45%::Windows 11 Pro defaults to BitLocker being turned on, using software encryption. We’ve tested the Samsung 990 Pro with hardware encryption to show how the various modes impact performance, and how muc

  • stifle867@programming.dev
    link
    fedilink
    English
    arrow-up
    22
    arrow-down
    7
    ·
    1 year ago

    Presumably you’re relying on the security of your home, and if that’s broken you’ve got bigger things to worry about.

    • Imgonnatrythis@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      30
      arrow-down
      2
      ·
      1 year ago

      I don’t buy this. If my home security is compromised I have big issues, but my data security is probably one of the biggest. If my desktop gets yoinked or HD plucked, the degree of identity theft that could be pulled off is simply massive. I can think of little better peace of mind than knowing my HD was well encrypted if my home was violated.

      • stifle867@programming.dev
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        1
        ·
        1 year ago

        Yeah I do agree and myself run FDE as a defence in depth measure and as a protection against specific threats such as the one you mentioned. I think we agree on that completely.

        In saying that, I would further add that it shouldn’t be relied upon as the only defensive measure as once someone has gained physical access to the device it’s not going to protect you against targeted attacks. If someone has access to your home they could install a camera aimed at the keyboard, or a hardware keylogger, or the good ol’ $5 wrench attack.

        • 601error@lemmy.ca
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          I use FDE because my locks are easily pickable. I don’t trust the landlord’s son that lives in the unit above mine. Also the computer is near a big window. Property crime is a popular activity in the area, so the smash-and-grab is a plausible threat. Defence in depth, though, so I still lock the front and interior office doors.

          • stifle867@programming.dev
            link
            fedilink
            English
            arrow-up
            2
            ·
            1 year ago

            Good point. Smash & grabs are definitely a valid threat model that FDE can help mitigate the effects of. Can be more or less prevalent due to location and ease of access. Personally, I live in a high rise, access controlled apartment so the smash & grab is a non issue for me.

            Another specific threat could be protection against government seizure.

      • scottyjoe9@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        Or what if your SSD borks it and you’re unable to do a secure erase on it? Happened to my wife’s laptop. I’m planning on smashing the SSD to ensure the data is destroyed before putting it in recycling.

      • stifle867@programming.dev
        link
        fedilink
        English
        arrow-up
        3
        arrow-down
        1
        ·
        1 year ago

        Completely valid point. The kind of non-technical people wouldn’t likely notice any difference in SSD speed anyway. It would be nice if they made it easier for technical people to disable the feature.

      • stifle867@programming.dev
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        That’s one issue I had with this article. It doesn’t do any actually tests to compare it to other OS implementations. How can we condemn Microsoft for 45% slower speeds (in a specific benchmark on specific hardware) when there’s no context to compare it to? And this claim is specifically only for software encryption where hardware level encryption is not available. Is it Windows 11 that’s specifically causing this, or is it a general problem?

        • Tibert@jlai.lu
          link
          fedilink
          English
          arrow-up
          0
          arrow-down
          2
          ·
          1 year ago

          Did you even read the article?

          The configuration has a powerful cpu and fast ssd. There are multiple benchmark tools used, and 2 encryption methods, software and hardware.

          • stifle867@programming.dev
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            Yes I did and everything you pointed out does nothing to address my comment.

            It doesn’t do any actually tests to compare it to other OS implementations.

            Is it Windows 11 that’s specifically causing this, or is it a general problem?

            How does pointing out that they did tests with different CPUs and SSDs, multiple benchmarking software, and different encryption methods do anything to address my complaint that they did not comment on whether this is a Windows 11 specific issue? Did you even ready comment?