Comment by PunchyHamster

3 days ago

That is also required for any kind of key rotation to work, you're getting new key for a key, because alternative of using key directly would mean re-encrypting the whole drive when it changes and of course only having single one instead of multiple

3 comments

PunchyHamster

nottorp 3 days ago

So if you’re using the TPM based encryption you’d better have a working backup system.

How many home users have that? How many stories of personal data loss are we going to hear as windows 11 ready PCs start to die?

db48x 5 hours ago

Working backups are important regardless, but if you use a TPM then you’d better have your recovery keys somewhere convenient. I’m sure you can print them out and keep them in your wallet or something.
PunchyHamster 1 day ago

don't worry, ms pushes users to just put data on onedrive, they will start losing data far before machines actually die. We already had plenty of stories of that mess.
https://boingboing.net/2026/01/05/everyone-hates-onedrive-mi...