BitLocker, which is Microsoft’s software encryption for SSDs, has run into its fair share of issues over the years since its release. And now there’s another potential problem looming over Windows 11 users with the upcoming version 24H2 update.
There’s a new report that Windows 11 version 24H2, also called the 2024 update, “may enable BitLocker by default during installation” across various versions of Windows including Home edition, according to German news outlet Deskmodder (reported on by Neowin). Why is this considered bad news? For several reasons.
What's the problem?
The first is that using BitLocker for encryption can seriously slow down your PCs’ performance by up to 45% in Windows Pro, and would most likely affect other versions of the OS similarly. This occurs due to Windows 11 constantly prompting encryption and decryption processes with data on your SSD while your computer carries out read and write operations.
The second issue is that a user unfamiliar with encryption in general or this specific issue with BitLocker could encrypt their data without knowing and then not be able to decrypt and recover their data due to misplacing or not saving the needed key.
There’s also a third issue with BitLocker in terms of security as well — according to YouTuber Stacksmashing, its encryption can be cracked remarkably easily. Their video demonstrates that if you’re using either a Windows 10 or Windows 11 Pro device with a dedicated external Trusted Platform Module (TPM), your encrypted data can be decrypted and read. You only need a $10 Raspberry Pi Pico, physical access to the target endpoint, and the knowledge of how to do it.
How to fix it
Of course, there is a simple way to fix this auto encryption. You only need to disable Device Encryption inside Privacy & security in Settings. Thankfully users have that option, but many casual Windows 11 users, especially those with Windows 11 Home, may not be aware of the situation, let alone how to fix it.
Hopefully, if this report is true, Microsoft will disable auto-encryption before the update launches. It’s not necessary and causes more problems than it really solves.