1. Microsoft is enhancing Windows security and privacy with Recall, a new feature for Copilot+ PCs that utilizes AI and local processing. Designed with user control in mind, Recall allows users to opt-in for snapshot saving, ensuring sensitive data is encrypted and securely stored. The architecture prioritizes privacy, enabling users to manage their data effectively.2.
Microsoft’s Recall: A New Era in Security and Privacy
On September 27, 2024, Microsoft unveiled exciting updates regarding its Recall security and privacy architecture. As AI continues to integrate into Windows, the company is enhancing user experiences while prioritizing security.
What’s New in Recall?
Recall is an innovative feature designed for Copilot+ PCs. It leverages a powerful Neural Processing Unit, enabling seamless AI experiences without internet connectivity. This shift allows for lower latency and improved battery life during AI-intensive tasks.
“Recall is designed to help you instantly and securely find what you’ve seen on your PC.” – David Weston
By processing AI-related data locally, Microsoft aims to enhance user privacy. However, this approach introduces unique security challenges that the company has proactively addressed in its design.
Major Updates to Security and Privacy
Recall is built on four core principles:
- The user is always in control.
- All sensitive data is encrypted and protected.
- Services operate in isolation.
- Users must be intentional about using Recall.
During setup, users can choose whether to opt-in for saving snapshots. If they do not opt-in, Recall remains inactive. Moreover, sensitive data is encrypted using a Trusted Platform Module (TPM), ensuring that unauthorized users cannot access it.
“You are always in control, and you can delete snapshots, pause or turn them off at any time.” – David Weston
Understanding the Recall Security Model
Recall utilizes Virtualization-based Security (VBS) Enclaves, creating a secure environment for processing sensitive information. This hypervisor-based approach ensures that data remains protected from both kernel and administrative users.
Users authenticate their access to Recall using Windows Hello Enhanced Sign-in Security. This biometric authentication adds an extra layer of protection, ensuring that only authorized users can view their snapshots.
What’s Important to Know
Recall is entirely opt-in, meaning snapshots are only saved if users choose this feature. Data remains local, and Microsoft does not share it with third parties. Users can filter what gets saved and can delete unwanted snapshots at any time.
With Recall, Microsoft is setting a new standard for privacy and security in AI-driven experiences. By prioritizing user control and data protection, Recall promises to enhance the Windows experience while keeping user information safe.
From the Windows Blog
Windows Server Devices Now Recognized as a New OS in Intune Microsoft has announced that Windows Server devices are Read more
Microsoft Power Platform is leading the way in AI-generated low-code app development. With the help of AI, users can quickly Read more
Microsoft Intune is an enterprise mobility management platform that helps organizations manage mobile devices, applications, and data. The October edition Read more
Microsoft Intune has released its November edition, featuring new updates to help IT admins better manage their organization’s mobile devices. Read more
