Microsoft published a detailed security architecture overhaul for Recall on September 27, 2024, addressing the critical flaws that forced the June withdrawal.
ℹ️
Key Facts:
Database: Now fully encrypted with TPM-protected keys
Access: Windows Hello biometric authentication required
Activation: Completely opt-in (no longer default-on)
Filtering: Automatic sensitive info detection via Microsoft Purview engine
Processing: Operations run within Virtualization-based Security Enclave
Database: Now fully encrypted with TPM-protected keys
Access: Windows Hello biometric authentication required
Activation: Completely opt-in (no longer default-on)
Filtering: Automatic sensitive info detection via Microsoft Purview engine
Processing: Operations run within Virtualization-based Security Enclave
Microsoft emphasized that snapshots are not sent to their servers and all AI processing occurs locally. However, security researchers remained cautious: the sensitive info filter was not 100% reliable, PIN fallback could bypass biometrics, and there was no way to verify settings were not reset by updates.
Sources: Windows Blog
