Microsoft will make BitLocker a required feature in the new Windows 11 version 24H2 update on all supported devices, with no additional configuration required by users.

Image source: Copilot

As TheVerge reports, Microsoft will make BitLocker device encryption a default feature in an upcoming major update to the Windows 11 operating system. This change will affect users performing a clean installation or device setup using a Microsoft account. The 24H2 update is expected at the end of September and is already pre-installed on new Microsoft Copilot Plus PCs. With a regular update to version 24H2, Microsoft will not automatically enable device encryption.

Encryption is designed to improve the security of Windows-based computers. BitLocker automatically encrypts the drive on which the operating system is installed and stores the recovery key in your Microsoft account or Entra ID. Additionally, in version 24H2, Microsoft has lowered the hardware requirements for encryption, making it available on more devices, including those running the Home edition of Windows 11.

Note that users with a local Microsoft account with a clean installation of Windows 11 version 24H2 will be able to avoid automatic encryption if they do not log in with their account during the setup process. BitLocker can also be turned on or off manually through Control Panel or Windows 11 Privacy and Security Settings.

Interestingly, the inclusion of BitLocker as a standard feature follows other security measures Microsoft has taken in Windows 11, such as requiring modern processors, secure boot, and TPM (Trusted Platform Module) chips. Two years ago, Microsoft also enabled the Virtualization-Based Memory Integrity (VBS) feature by default to better protect Windows 11 systems from malicious code.

Leave a Reply

Your email address will not be published. Required fields are marked *