this post was submitted on 22 Oct 2023
357 points (95.7% liked)

Technology

59427 readers
3782 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Tested: Windows 11 Pro's On-By-Default Encryption Slows SSDs Up to 45%::Windows 11 Pro defaults to BitLocker being turned on, using software encryption. We've tested the Samsung 990 Pro with hardware encryption to show how the various modes impact performance, and how muc

you are viewing a single comment's thread
view the rest of the comments
[–] vext01@lemmy.sdf.org 5 points 1 year ago (6 children)

Yeah, but normally FDE overhead is so low, you may as well encrypt.

[–] stifle867@programming.dev 0 points 1 year ago (5 children)

That's one issue I had with this article. It doesn't do any actually tests to compare it to other OS implementations. How can we condemn Microsoft for 45% slower speeds (in a specific benchmark on specific hardware) when there's no context to compare it to? And this claim is specifically only for software encryption where hardware level encryption is not available. Is it Windows 11 that's specifically causing this, or is it a general problem?

[–] setsubyou@lemmy.world 2 points 1 year ago (2 children)

Comparing to macOS is actually impossible because fde can’t be turned off on Macs at all. Macs (and iPhones etc.) handle encryption of internal storage transparently in hardware at pretty much no overhead and without the CPU even having access to the key. You can only choose whether a login is required for the Secure Enclave hardware to be able to access the key.

On other platforms it’s pretty much a hardware question too. PC vendors and hard disk vendors could do the same thing Apple is doing regardless of whether the OS is Windows or Linux or whatever. How fast the OS based encryption is only matters on hardware that doesn’t have this functionality.

[–] stifle867@programming.dev 2 points 1 year ago (1 children)

Exactly right. To me it seems overly clicky baity to specifically condemn Windows 11 for the overhead of software based encryption because the hardware doesn't support it. The same problem exists across all platforms (hypothetically) if there is no hardware support.

It would have been another thing if they could show this problem was unique to Windows 11, or if they focused on the fact that it was difficult to disable. Instead they put so much effort into saying Windows 11 runs 45% slower due to Bitlocker.

[–] Spotlight7573@lemmy.world 2 points 1 year ago

What was telling for me was the article from the same site from a few years ago about Microsoft disabling the use of hardware encryption by default because they couldn't trust the drive manufacturers to do it right.

Do they want things to be secure or fast?

load more comments (2 replies)
load more comments (2 replies)