• Moonrise2473OP
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Well right now it’s more secure than a decade ago

    Today a locked BIOS + strong windows password could render a stolen computer almost useless if:

    1. Storage is encrypted with keys stored in the CPU tpm (default)

    2. Nand is soldered

    3. Secureboot is enforced strictly so only windows could boot (default)

    4. Before locking the bios with a password, all booting options are disabled except internal storage