Jun 10, 2024 11:27:00

Security issues revealed about Windows' full operation record AI 'Recall' and Microsoft announces default disablement of the function

On May 20, 2024, Microsoft announced the AI feature '

Recall ' that records PC operations with screenshots and makes them searchable later. However, concerns about security and privacy have been raised about Recall. In response to these concerns, Microsoft announced on June 7, 2024 that it would review the Recall function.

Update on the Recall preview feature for Copilot+ PCs | Windows Experience Blog
https://blogs.windows.com/windowsexperience/2024/06/07/update-on-the-recall-preview-feature-for-copilot-pcs/

Recall is an AI search function that will be installed in Windows, which records operations on the PC along with screenshots, and stores the text and images contained in the screenshots in a database so that they can be searched later. Microsoft promoted Recall as a highlight feature of Copilot+ PC, which is equipped with a powerful AI processing chip.

Microsoft announces new AI feature 'Recall' for Windows 11, a powerful AI search function that records everything you see and do on your PC and allows you to search later - GIGAZINE

However, Recall has raised many privacy concerns due to its feature of 'recording all operations on a PC.' Furthermore, security researchers have discovered a way to extract Recall's recorded data from a PC, revealing security issues.

'TotalRecall' extracts everything from the recorded data of the 'Recall' function that saves everything in Windows 11 - GIGAZINE

As concerns about Recall grow, Microsoft announced a review of the Recall feature on June 7, 2024. The main changes revealed by Microsoft are as follows:

◆Recall is now off by default
Even if your PC supports Recall, it will be disabled by default and you will need to manually enable it.

◆ Windows Hello is now required to use Recall
To enable Recall, you must use

Windows Hello, which allows you to verify your identity using facial recognition or fingerprint authentication. You also need to authenticate with Windows Hello when using the Recall search function.

◆ Strengthening security
Recall now has an additional layer of data protection protected by Windows Hello Enhanced Sign-in Security (ESS) , which encrypts Recall snapshots and search indexes.

In addition, Microsoft lists the following features to clarify Recall's privacy protection measures:

- Recall snapshots are stored locally and processed locally
・Recall snapshots are not used for AI training
Recall snapshots are not sent to Microsoft
- Recall snapshots cannot be viewed by other users of the same device
- Even administrators cannot view other users' Recall snapshots.
When you are using Recall, a Recall icon appears in the taskbar, making it clear that a snapshot is being saved.
- Private browsing content will not be saved on 'Edge', 'Chrome', 'Firefox', 'Opera' or 'Chromium-based browsers'
・Data saved by Recall can be deleted at any time
On corporate devices, IT administrators can disable Recall for users, but cannot enable it.