Microsoft will now encrypt new SSDs with BitLocker

(Image credit: Future)

Although Windows ships with its own full volume encryption tool called BitLocker, SSDs that claimed to offer their own hardware-based encryption were trusted by the tool and left alone.

Now though, after a recent update to Windows 10, Microsoft will assume that connected SSDs don't actually encrypt anything.

In a Twitter post, SwiftOnSecurity described why the software giant has decided to no longer trust SSD manufacturers, saying:

Microsoft gives up on SSD manufacturers: Windows will no longer trust drives that say they can encrypt themselves, BitLocker will default to CPU-accelerated AES encryption instead. This is after an exposé on broad issues with firmware-powered encryption. “

A report released in November of 2018 revealed that self-encrypting drives have a number of security flaws including the use of master passwords set by manufacturers. This means that those who purchased SSDs which were supposed to help keep their data secure might as well have purchased a drive that did not handle its own encryption instead.

SSD encryption

Users who purchased self-encrypting drives were actually worse off than they thought as Microsoft set up BitLocker to leave these drives alone completely. This was done to help performance without compromising the security of these drives as they could use their own hardware to encrypt their contents instead of using a system's CPU. However, now it seems as though Microsoft will no longer trust SSD manufacturers to keep customers data safe on their own.

In its release notes for the KB4516071 update to Windows 10, the company explained the changes it had made to how BitLocker handles self-encrypting drives, saying:

"Changes the default setting for BitLocker when encrypting a self-encrypting hard drive. Now, the default is to use software encryption for newly encrypted drives. For existing drives, the type of encryption will not change." 

While it would be nice if self-encrypting SSDs were as secure as they claim to be, at least now users can rest easy knowing that BitLocker will secure their drives.

TOPICS
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
NordProtect logo
Standalone identity theft protection from Nord Security is now available
A man holds a smartphone iPhone screen showing various social media apps including YouTube, TikTok, Facebook, Threads, Instagram and X
Ofcom cracks down on UK tech firms, will issue sanctions for illegal content
3d rendering of a submarine power cable on the seabed
Subsea internet cables can now ‘listen’ for sabotage using irregular pulses of light
Dark Web monitoring
A worrying critical security flaw in Apache Tomcat could let hackers take over servers with ease
A graphic showing someone on a tablet working through a supply chain.
Security issue in open source software leaves businesses concerned for systems
ransomware avast
One of the most powerful ransomware hacks around has been cracked using some serious GPU power
Latest in News
Garmin Instinct 3
A new Garmin study hints at the link between burning calories and happiness, and I've got good and bad news
A woman sitting in a chair looking at a Windows 11 laptop
Microsoft is supercharging Windows 11’s voice commands on Copilot+ PCs with Snapdragon CPUs, and fine-tuning a few Recall features
MacBook Air M4
Apple's rumored foldable iPad tipped to launch sooner than expected with an exciting software twist
A phone displaying the Google Messages logo
Google Messages could finally be getting this WhatsApp-style group chat feature
The Future Games Show Spring Showcase
The Future Games Show returns this week for its Spring Showcase, here's how to watch and what games to expect
NordProtect logo
Standalone identity theft protection from Nord Security is now available