A TPM ensures the right software was run, not that the software is running right. Once the TPM unseals the key, software is free to do whatever with it. To imply that the TPM protects keys resident in the OS memory space is misguided.

I want to know how this works for an enterprise work laptop. Can my employer choose to turn it on and access the information? It's the only time I am forced to use Windows.

I've read the new "security" features they've put in place. There is an option to do X, an option to disable Y, an option to...

Look, it's all good and dandy, but when I hear "option" from Microsoft, I just _recall_ how often they are reset on every update. Do we have to list the number of "oups, that was a bug, sorry" incidents that have happened with Edge?

Microsoft did a pretty good job to ruin the little confidence we had in their name. They kind of dig their own grave.

That's certainly more than I expected and as much as one can likely do while keeping the feature useful. Only open-sourcing the whole thing would be a another step up from here.

Still not going to use that or windows for anything serious, but credit where credit is due.

I'm very excited for this feature and bought a Copilot+PC for this feature.

I spend so so much time looking for information I saw in the past...a document, a conversation, a website, etc. This will be a big time saver and have a ton of utility.

To those that are scared of it: don't use it. I can make my own choices.

Not being a security expert, this looks great at first glance and I am very happy Microsoft put in the security effort they told everyone they would. It does however raise a few discussion points:

This wasn't so hard, was it? Why wasn't it done before? To me, the fact that the new recall architecture wasn't in the initial release says that there are still huge security culture issues. But organizational culture is slow to change, and Recall has happened in parallel with the new security reforms, so you can't expect them to get rid of their old ways over night.

As others in the thread have pointed out, it seems Microsoft are promising things that are very non-Microsoft-y, like promising to never re-activate, promising an easy opt-out to never be bothered again, and promising that activating the service in the first place is an opt-in-during-install feature. Microsoft have a reputation for being a pushy company that doesn't take no for an answer, and coupled with the recent security culture issues, I have personally started recommending non-tech people to just switch to Apple now before things get worse. Can we trust that Microsoft won't backpedal on their promises? Fool me once, shame on you, fool me twice...

> “You can remove it completely, never be turned on in future,” Weston said.

That should be the headline, if true.

That’s just making sure the water is lukewarm, so we all feel comfortable sitting in the pot.

I'm frankly stunned that Microsoft managed to turn this around (and so quickly). I think most of us were expecting this to quietly disappear, never to be heard from again. Time will tell whether the security features are what they're claimed to be, but things are honestly looking better.

How can I disable proof of presence?

I guess for enterprise users this might be an olive branch, but I don't trust Microsoft. I'll stay with Linux.

They shipped it, as terribly user-hostile, and stupidly insecurely, as they did, for some reason. Did they just not care? Think we wouldn't notice? Conveniently shipped a gaping hole for 3-letter-agencies?

That feature, with its shit security, was designed, aplroved, implemented, reviewed, and see by COUNTLESS PMs, engineers, and managers.

No one cared. That culture is rotten to its fucking core. Microsoft never gave a shit about good engineering when I was there, highly preferring to gaslight and go over peoples heads, dare they say that the entire (initial) design of VMSS is flawed, or that maybe just maybe Azure would benefit from a metadata service and machine identities. Literally "controversial" shit that resulted in my manager getting emailed.

Every, single engineer, bar one, that I respected at that company has left. Says something.

I know it's a hot take but people are out of their minds trusting a Microsoft platform if they care at all about personal or business privacy.