Microsoft Edge introduces a new policy that deletes difficult passwords permanently
The new policy was introduced in the Beta Channel.
2 min. read
Updated on
Read our disclosure page to find out how can you help Windows Report sustain the editorial team. Read more
Microsoft Edge recently released its 132.0.2957.11 build to the Beta Channel, and with it, the browser brings dozens of new features and policies, including one that enhances the password manager.
A new rule for the built-in password manager, DeletingUndecryptablePasswordsEnabled, decides whether the password manager can delete passwords it can’t read (undecryptable passwords) from its storage. The password manager needs this new rule to work properly.
However, there is a chance of permanent data loss, and deleting these unreadable passwords can mean losing them forever. The same goes for undecryptable passwords, which cannot be restored to their original form.
New password manager policy. The DeletingUndecryptablePasswordsEnabled policy controls whether the built-in password manager can delete undecryptable passwords from its database. This policy is required to restore the full functionality of the built-in password manager, but it might cause permanent data loss. Undecryptable password values won’t become decryptable on their own. If fixing them is possible, it usually requires complex user actions.
This means opting for difficult passwords and saving them in the Microsoft Edge password manager can result in permanent loss. You won’t be able to access lost encrypted passwords, as doing so requires complex user actions.
It could result in a weaker defense for those still preferring the classic way of accessing their profiles.
The policy is somehow flying under the radar among the other dozens of policies introduced with this build. Still, it can have serious implications for organizations and users choosing strong passwords that contain elements other than regular letters and cannot be read classically.
If you frequently use Microsoft Edge Passwords Manager, you must be aware of this policy and save only those passwords that can be read.
The official changelog for this release can be read here.
You can also download the latest Edge Dev build.
User forum
0 messages