Y
Hacker News
new
|
ask
|
show
|
jobs
by
NotPractical
865 days ago
TPM without PIN is the default configuration, so I'd consider it to be a big deal.
2 comments
briHass
864 days ago
The age old battle of security vs convenience. Most Linux distros don't force you into pre boot, PIN TPM encryption either.
It is controllable through group policy, so orgs that care can force users into it.
link
ddtaylor
864 days ago
I agree. It seems Microsoft wants to get the accolades of solving a hard key exchange problem without actually solving that hard key exchange problem. We see this a LOT in companies that "make it easy" to do cryptography.
link
It is controllable through group policy, so orgs that care can force users into it.