Menu
In Windows 10, is there a secure storage mechanism analogous to the Android TrustZone?
Where the data is encrypted and stored in a location separate from regular user file space?
I'm looking to store data from an application that doesn't need to be accessed by any other user or application, and I don't really want to just encrypt it and store it on the disk.
Any thoughts?
458
asked Apr 16 '26 10:04
With Windows being an open platform (unlike non-rooted Android - I am talking about the user point of view now) there's no simple way to store anything on the disk (or elsewhere for this matter) and have it protected from user's access. The user is essentially the owner of everything in his PC and on its disk.
The best you can do is use CryptProtectData / CryptUnprotectData WinAPI functions to "bind" the data to the user account. These APIs don't store the data, but just encrypt it with the key, derived from the user credentials. You then can store this encrypted data in user's profile directory.
82
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
