Home
» PC Tips
»
Windows 11 will enable BitLocker drive encryption on every PC
Windows 11 will enable BitLocker drive encryption on every PC
According to a report from Deskmodder.de, Microsoft will implement a new setup process that automatically enables BitLocker encryption during OS reinstallation, starting with the Windows 11 24H2 update.
BitLocker is a Windows data encryption tool, very secure but if users lose the key, they will face the risk of losing all data.
This new encryption process will affect Windows 11 Pro users. With Windows 11 Home, BitLocker encryption is only applied when the manufacturer enables the encryption flag in the UEFI and through the device manufacturer. So this probably won't affect self-built PCs running Windows 11 Home.
BitLocker feature on Windows 11. Photo: WindowsLatest
BitLocker will be automatically enabled/re-enabled during OS reinstallation starting from 24H2, provided that the Windows 11 version has this feature. This applies to both fresh installations of Windows 11 24H2 and system upgrades to 24H2. The C drive and all other drives connected to the computer will also be encrypted during the reinstallation.
BitLocker encryption is useful for devices that contain important data to ensure information security, but it is also a real concern for users who are unaware that drive encryption has been enabled during the operating system reinstallation process. Users may lose access to all drive contents due to encryption if any memory-related issues occur with the BitLocker-enabled computer.
Microsoft requires Windows 11/10 Pro users to proactively enable BitLocker and back up their BitLocker encryption keys to keep their data safe. But users can still lose access to their data if they forget or lose their backup. In the event that a user loses access to their Microsoft Account, they lose access to their PC.
Additionally, TomsHardware tests last year found that BitLocker encryption can reduce SSD performance by up to 45% depending on the workload. If you’re using software BitLocker, all encryption and decryption tasks are loaded onto the CPU, which can reduce system performance. Even with modern CPUs that have AES encryption/decryption capabilities, there’s still a performance hit.
Luckily, users can still use Rufus, which is capable of disabling Windows 11 24H2 drive encryption before installing Windows.
Use Rufus to disable BitLocker before installing Windows. Photo: WindowsLatest.
Alternatively, users can disable BitLocker by manipulating the Registry during Windows installation:
Press Shift + F10 to open the Command Prompt window.
Type regedit and press Enter to launch Registry Editor.
Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\BitLocker.
Right-click the empty area next to it and select New > Dword (32-bit) Value.