Intended to counter hardware exploits, such as the checkm8 exploit of T2 chips and Thunderspy for Thunderbolt 3, this should prove valuable protection.
T2
On T2 and M1 Macs, FileVault provides robust protection of the Data volume on internal storage without any performance penalty.
Before deciding on internal and external storage, you need to be realistic about the performance it will achieve. Here are the numbers – and a couple of things we tend to forget about.
Should you be scared of ‘bricking’ your Mac? Just what does it mean, and what could you do about it? Don’t panic: it’s not a dragon to be slayed.
In less than 5 years, Macs have gone from unsecured firmware and booting to a fully secure process to deliver, install and run firmware which can’t be exploited.
Maybe you’ve just forgotten the password, or perhaps the owner/user of the Mac is no longer able to enter it. How to restore access to different models.
Passing your Mac on to a new owner has got much easier and more reliable in Monterey – so long as it has got a T2 or M1 series chip.
On Intel Macs, resetting the SMC was a universal panacea until the T2 came along. What can we do instead with an M1 Mac?
What is FileVault encryption? Is it the same as that on an M1 Mac’s internal SSD, or something different? How can you use it instead of overwriting an SSD? Which boot volumes are encrypted?
What do you need to do before selling or giving away your Mac to someone else? Here’s a summary, covering all from Intel to M1 models.
The Eclectic Light Company 