David Weston, the Director of the OS Security of Microsoft pointed to compromises as drivers of choices made by it, to provide stability between performance, battery life & security in an interview with TechRepublic.
Behind its decision related to the chip support for the Windows 11 more background on rationale has been provided by Microsoft. None of his statements, however, is forcing the buying of new PCs by the users.
The launch of Windows 11 has been bumpy. The new software’s early impressions have been positive despite it is the Beta release which is initial on one hand & still, some key features are missing.
On the other hand, leaked early build hampered the launch which followed confusion and anger related to the TPM 2.0 modules’ requirements & CPUs’ requirements for Windows 11. Some of the requirements were seemed arbitrary.
Just as the TPM 2.0 requirements are security-driven, similarly the CPUs’ requirements for Windows 11 are also security-driven. The aim of Microsoft is to get the right balance between performance, battery life & security so that the best possible experience can be received by the users on Windows 11.
Since 2016, TPM 2.0 has been a requirement for Windows however it has not been enabled by many vendors due to battery life and performance concerns. 60% security will be increased alone in Windows 11 by turning on this along with other malware mitigations which exist. It will also be a requirement for Windows 11’s final build. All these features will have an impact on the PCs’ battery life & performance including Beta that might make Windows 11 able to run.
Weston also said that by default virtualization-based security is there in Windows 11. The ability to do BitLocker in Windows Hello will be provided by TPM in the more default scenarios. The users must take advantage of the System Guard and other similar things if they are to permit commercial enterprises.
The security value is also out-of-the-box. On the basis of looking at the threat intelligence vs. changed default, the users will be more protected than before and can flip their computer or laptop with a feeling of protectiveness.
According to him some chips of the 7th generation and from Qualcomm & AMD have limited support for the security features which are virtualization-based. Hence, they are omitted. Microsoft is trying its best for addressing the platform security and thus it is hard to criticize.