Share this article

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low

Copilot in Outlook will generate personalized themes for you to customize the app

Microsoft will raise the price of its 365 Suite to include AI capabilities

Death Stranding Director’s Cut is now Xbox X|S at a huge discount

Outlook will let users create custom account icons so they can tell their accounts apart easier

Microsoft introduces Personal Data Encryption, which protects devices from sophisticated cyber attacks

It uses Windows Hello for Business to link data encryption keys with user credentials.

3 min. read

Published onJune 3, 2024

published onJune 3, 2024

Share this article

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

If you’re a developer who constantly seeks methods to enhance the security of data managed by your application, Microsoft has introduced something that could spark your interest: Personal Data Encryption (PDE).

This clever feature, combined with BitLocker, already familiar to many users, promises an enhanced safeguard for Windows devices’ contents.

BitLocker is commonly used for encrypting complete volumes, which is useful to avoid dangers connected with misplaced or stolen devices.

However, in the cybersecurity world, there always seems to be a “but.” Particular situations such as TPM bus sniffing and Direct Memory Access (DMA) attacks might put at risk BitLocker shielded data. Also, as apps and browsers use AI in recommendation engines, it is very important to keep users’ private data.

PDE enters the scene, bringing an extra layer of security when your device is locked but still turned on. This helps to protect it from advanced physical attacks. The interesting part about PDE is that it usesWindows Hellofor Business, which directly connects data encryption keys with user credentials.

So, once a person signs in usingWindows Hello for Business, their encrypted data can be accessed. If you are thinking, Personal Data Encryption and BitLocker can be separate or together. However, having both is strongly advised for added assurance.

PDE is more than just a single feature. It provides a full API for developers to encrypt users’ end data, with encryption keys kept safe by using their Windows Hello details. It’s worth mentioning PDE only exists in Windows Enterprise and Education versions.

As far as securing content-generating applications, the PDE API supports two security levels:L1(AfterFirstUnlock) andL2(WhileUnlocked), where data protection depends on device lock status.

For developers ready to start, starting with Personal Data Encryption means turning it on your device through a Microsoft Device Management solution such as Intune. When you have enabled PDE, you can protect files, folders, and buffers at different levels of security and unprotect them when needed.

The whole process—from protecting a folder to unprotecting buffers—is described in the documentation, including code pieces and samples.

So, whether you are making applications for defense, banking, health care, or insurance areas – adding PDE to your projects might greatly improve the safety of important data. And for people who want to dig deeper into it all, the full code and more materials can be found on GitHub. They are prepared for you to include them in your future Windows application project.

In a world where data breaches are common, tools such as Personal Data Encryption could be highly appreciated. What do you think of it?

You can read the full blog posthere.

More about the topics:Business software,microsoft

Flavius Floare

Tech Journalist

Flavius is a writer and a media content producer with a particular interest in technology, gaming, media, film and storytelling.

He’s always curious and ready to take on everything new in the tech world, covering Microsoft’s products on a daily basis. The passion for gaming and hardware feeds his journalistic approach, making him a great researcher and news writer that’s always ready to bring you the bleeding edge!

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Flavius Floare

Tech Journalist

Flavius is a writer and a media content producer with a particular interest in technology, gaming, media, film and storytelling.

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low#

Copilot in Outlook will generate personalized themes for you to customize the app#

Microsoft will raise the price of its 365 Suite to include AI capabilities#

Death Stranding Director’s Cut is now Xbox X|S at a huge discount#

Outlook will let users create custom account icons so they can tell their accounts apart easier#

Microsoft introduces Personal Data Encryption, which protects devices from sophisticated cyber attacks#