Today, Microsoft announced major updates to its controversial Recall feature, originally set to launch in June alongside the first Copilot+ PCs. After receiving considerable backlash regarding its inadequate security, Microsoft returned to the drawing board and is now prepared to showcase how this updated feature will ensure the security of user data.
From the outset, Microsoft emphasizes that Recall is an opt-in experience, providing users with two clear choices: yes and no. Moreover, Microsoft has confirmed that Recall will now be uninstallable, countering its earlier statements when users noticed the option to delete the feature. Uninstalling Recall from your device will erase all associated data, including AI models.
A significant issue with the initial release of Copilot was how easily accessible its data was. Fortunately, with the new recall, all your data will be encrypted and linked to the Trusted Platform Module. Accessing this data will necessitate Windows Hello authorization, utilizing your face, fingerprint, or personal identification number (PIN).
Additionally, Recall now processes data within a virtualization-based security enclave (or virtual machine). In an interview with The Verge, David Weston, Microsoft’s VP of Enterprise and Security, explained:
We’ve moved all of the screenshot processing, all of the sensitive processes into a virtualization-based security enclave, so we actually put it all in a virtual machine. The app outside the virtualization-based enclave is running in an anti-malware protected process, which would basically require a malicious kernel driver to even access.
In addition to these under-the-hood updates that may not be immediately visible to the average user, Microsoft has introduced various software enhancements to Recall. These include the ability to filter apps and websites automatically. Sensitive information, such as passwords, identification, credit card details, and anything you access in InPrivate mode, will be filtered out seamlessly. Users will also have the option to delete specific segments of their data, whether it be from a particular time frame, application, or website, or to erase everything at once.
To further enhance the security of Recall, Microsoft is now prohibiting the installation of this feature on non-Copilot+ PCs. Earlier this year, users managed to get Recall operational on unsupported systems, and it appears Microsoft aims to put a stop to that by requiring Recall to verify that your system meets the Copilot+ PC specifications, including BitLocker, Virtualization-Based Security (VBS), kernel DMA protections, and more.
The revamped Recall is expected to be available to Windows Insiders in October. However, there is currently no information regarding its availability outside of the Insider program.
Leave a Reply