Device encryption is a process of encrypting data using one or more mathematical techniques and helps you protect your data against unauthorized access and prying eyes or being stolen.
And it is available in a wide range of modern security systems on Windows computers, but not all the Windows 11 editions. If you want to use it, your computer needs to meet the following requirements. If it is not available on your device, you could consider using the standard Bitlocker.
After encrypted, only authorized people can access your data on this device. However, Microsoft will not tell you a passport directly as some experts believe the key will be stored in your account. As a result, your data will be lost when the system crashes or disk is corrupted.
So you can choose to turn on device encryption to protect data safely or turn off device encryption to ensure you will not suddenly lose data. And it's not possible to decrypt data without a key, but you can at least stop Microsoft's Auto-Encryption process in Windows 11 to ensure that your data is recoverable in times of system failure.
Although I have previously described the requirements for Device encryption, you may still not know if your computer support Device encryption. If so, please follow the steps below.
Step 1. Type system information in the search box, select the top result and Run as administrator.
Step 2. In the System Information window, select System Summary at the left.
Step 3. Go to the right side, find out the Device Encryption Support item and check its Status.
>> If it shows Meet prerequisites, your computer support Device encryption.
>> If it shows Reason for failed device encryption, your PC doesn't support device encryption. In this case, you could consider using Bitlocker as instead (except for Windows 11 Home edition).
As I said before, you can choose to turn on or off Device encryption, depending on your purpose. It is applicable to Windows 11 Home, Professional, Enterprise, and Education. Here I'll show you both of them.
Step 1. Go to the Device encryption window.
Step 2. Slide the Off button next to Device encryption and it will start to encrypt your device until completed.
After completion, the switch becomes On. To disable device encryption in Windows 11, slide this button and then you will be told your files won't be protected, click Turn off.
Helpful Tip:
You cannot decrypt your data without a recovery key. Thus, please backup the Bitlocker recovery key after you enable Device encryption in Windows 11.
If the Device encryption is not showing in the previous method, then your computer does not support it. In this case, you can choose to encrypt data with Bitlocker. It uses Advanced Encryption Standard (AES) encryption algorithm with 128 or 256 bit keys for data encryption in the entire drive or only used space of it. And it still requires a BitLocker password or recovery key for decryption.
There are two types 2 encryption types you can use in Windows 11:
Then, see below and learn to enable or disable Bitlocker device encryption.
Step 1. Open Bitlocker drive encryption window, you have 2 ways in the following.
#1: Through Bitlocker Manager. Type Manage BitLocker in the search box and then click Open at the right panel.
#2: Through Windows Settings. Open Settings and click System, then navigate to About and click BitLocker settings.
Step 2. In the Bitlocker Drive Encryption window, go to the Operating system drive and click Turn On BitLocker. To disable it, click Turn On Off BitLocker.
Besides, you can still turn on or off BitLocker using command prompt. Press cmd in the search box and click Run as administrator. Here take C: as the drive you want to unlock:
To enable Bitlocker encryption, type manage-bde -on C: and hit Enter.
To disable Bitlocker encryption, type manage-bde -off C: and hit Enter.
Device encryption and Bitlocker device encryption are indeed helpful for data security, but they may result in irrevocable data loss when the system crashes or the disk is corrupted. So what can we do to protect data and be sure it's recoverable in the event of a system failure?
You consider using a reliable file backup software - Qiling Disk Master Professional. Unlike the built-in encryption methods, it allows you to backup files and encrypts only the backed up files. And you customize a password that you can easily remember. No one knows it unless you tell them. And you can enjoy the following advantages:
To get started, please download this software now! It supports Windows 11/10/8.1/8/7/XP and Vista. For server users, try Qiling Disk Master Server.
Step 1. Launch Qiling Disk Master Professional and click Backup > File Backup.
Step 2. Click Files or Folder to select the files you want to backup. Then, choose a destination path to store your files.
Step 3. To encrypt your files, click Options and click Enable encryption for backups. Now you can type your password and confirm it once again.
Step 4. Confirm all your settings and click Proceed to run the operation.
Since single backup only backup files are currently on the disk not including changes made later. Thus, it's suggested to enable schedule backup and backup scheme. The previous one helps you backup files automatically while the last is to manage disk space.
For schedule backup, you have 5 options, including Daily, Weekly, Monthly, Event Triggers, and USB plug in features. And the last one is strongly recommended if you backup files to an external hard drive but don't want to keep it always connected.
For backup scheme, you can choose the backup and cleanup methods. Both incremental backup and differential backup help you backup only changed files and save disk space. But the previous backup method has higher requirement for file recovery.
Device encryption and Bitlocker device encryption in Windows 11 help to protect your data, that sounds good, but in the event of a system problem, it can be a disaster if you don't have the password or recovery key. Thus, it's suggested to backup encrypt key immediately after encrypting files.
If you want one flexible method, try file backup software - Qiling Disk Master Professional. It not only passwords protect files, but makes it automatically and intelligently with help of multiple features, such as, incremental or differential backup, USB plug in, automatic backup cleanup, etc. All in all, it's worth trying software to protect data in the long-term!