What are the benefits and disadvantages of using Encryption and/or File Vault assuming you don't forget the password?

1. There is no difference. File Vault is a brand name for Apple's encryption standard.
2. If you turn on File Vault it's used constantly, in the background. You don't even notice it working.
3. No. See 1.
4. None of these are an issue with File Vault. Once the disk is encrypted it all runs in the background. You won't notice it at work.
5. You can't use both. Again, See 1, above. It has zero effect on on iCloud. Just a quick note though: iCloud is a sharing service, it's not a back up.
6. No idea if it's true but howsoever, if they did it's to make your data safer.

Comment: you're overthinking this. Turn on File Vault. Then forget about it. There is no performance hit. Your data is safer. It's a no-brainer.

I'll answer it this way: I know of no incidence of FV being cracked. But then, who are you and what data are you protecting? Are you typically using the kind of data that might attract the attention of foreign governments? If not then I think you're safe enough.

You can encrypt external drives with File Vault:

https://umatechnology.org/how-to-set-up-filevault-to-encrypt-your-external-drives/

RAMSLOT (Author)

Another product you may hopefully WILL NOT encounter:

is "MS Encryption Purveyor Software" ~ in normal worlds.

Because this requires the Sender to include you in Group.

Personal Medical Files to me never could be opened by me.

.All those who shared this information should've been sued.

Encryption in the hands of your alleged friends is bad news.

While 'standard encryption' used in email is fine. Further w/o

decode keys may as well just whip me, til red fluid flows free.

It's that bad. I almost decrypted MS medical files in GMail!

On Apple Silicon computers ( MacBook Pro (M1 Max, 2021) ) the Internal Drive is already Encrypted even without FileVault being turn ON

If FileVault isn’t turned on in a Mac with Apple silicon or a Mac with the T2 chip during the initial Setup Assistant process, the volume is still encrypted but the volume encryption key is protected only by the hardware UID in the Secure Enclave.

FileVault adds an addition Layer of Protect

Volume encryption with FileVault in macOS - Apple Support

Internal storage with FileVault turned on

One Very Important thing to remember if using FileVault

Is to create a Recovery Key

As for macOS 26 Tahoe and as many of us discovered After the Fact

Upon the initial installation of Tahoe and unbeknownst to many

FileVault is Automatically Turn ON without there any user interaction whatsoever

From what I have read, this turning ON of FileVault during the initial installation can not be changed

Only after installation can you turn it Off

RAMSLOT wrote:

I have never use encryption nor File Vault. I've been looking at posts here and using ChatGPT and cannot find a complete answer to the following:

What are the differences between encryption and File Vault?

FileVault is Apple's system for booting from an encrypted hard drive.

Are both used frequently?

Sure.

Can File Vault be used without encryption?

No.

Assuming one doesn't forget the password(s), what are the disadvantages of these two things? Slower boot? Slower launching of programs? Difficulty backing up using Time Machine? Difficulty copying to an external drive via Finder?

There are no disadvantages. If you're using a relatively modern Mac (which you are), then the system is already encrypted. On these newer computers, the system is designed to automatically unlock the encrypted hard drive on startup. If you turn on FileVault, then it just deletes that saved password and asks you to provide your account password before unlocking the drive and starting up.

If both are used, does iCloud backups remain easily accessible from another Mac or from an iPhone?

iCloud is a file sync system. It is not a backup. And it's unrelated to FileVault or encryption.

I heard that the M4 laptop using Tahoe will automatically encrypt your drive AND turn on File Vault. True?

Partially. The hard drive is automatically encrypted, but FileVault is turned off. I've heard that there was a bug that accidentally enabled FileVault for some users. And boy did those people get upset! "How dare Apple have a bug that makes my system more secure! Fire the CEO immediately!"

Why did Apple elect to do this?

Encryption is always a confusing topic. Apple's new system tries to make it more secure by default. This way, even if there's some kind of bug, as happened recently, then it will manifest as making the system more secure.

The main reason for FileVault is to protect your personal data should your Mac be lost or stolen.

Login passwords and other operating systems protections work to prevent access by anyone that does not have physical possession of your Mac.

But before FileVault someone with physical access to your Mac could have disassembled your Mac, removed the storage, and used another computer to read your data.

FileVault means even physical access will not allow anyone to read your data.

The encryption/decryption is all done by hardware, so there is no, zero, zilch performance penalty.

As has been mentioned the M-series Macs always encrypt the internal storage. But they do not password protected the encryption keys unless you enable FileVault. Although it seems macOS Tahoe 26 puts the encryption keys under your macOS account password.

External storage is not automatically affected by FileVault. You may use FileVault to encrypt external storage if you desire. Again, it is protection against the external storage being lost or stolen.

iCloud is never covered by FileVault. As data moves over the network between your Mac and iCloud it is protected from interception, but once it reaches the end-point, it is decrypted and stored. Like using an armored truck to move the data, but once it is at the other end it is taken out of the armored truck.

If you want to store encrypted data in iCloud (or any vendor’s cloud storage), you need to encrypt it manually with an encryption utility before sending it over the internet, and use the same encryption utility to decrypt it when you transfer the file back. This is outside the scope of FileVault.

NOTE: Apple works hard to make sure only you are allowed to access your iCloud data, but if a government provides a court, Apple must comply and allow access. Data you did not manually encrypt locally with an encryption utility before storing it in iCloud would be readable to court ordered access.

etresoft wrote:

RAMSLOT wrote:

I have never use encryption nor File Vault. I've been looking at posts here and using ChatGPT and cannot find a complete answer to the following:

What are the differences between encryption and File Vault?

FileVault is Apple's system for booting from an encrypted hard drive.

Are both used frequently?

Sure.

Can File Vault be used without encryption?

No.

Assuming one doesn't forget the password(s), what are the disadvantages of these two things? Slower boot? Slower launching of programs? Difficulty backing up using Time Machine? Difficulty copying to an external drive via Finder?

There are no disadvantages. If you're using a relatively modern Mac (which you are), then the system is already encrypted. On these newer computers, the system is designed to automatically unlock the encrypted hard drive on startup. If you turn on FileVault, then it just deletes that saved password and asks you to provide your account password before unlocking the drive and starting up.

If both are used, does iCloud backups remain easily accessible from another Mac or from an iPhone?

iCloud is a file sync system. It is not a backup. And it's unrelated to FileVault or encryption.

I heard that the M4 laptop using Tahoe will automatically encrypt your drive AND turn on File Vault. True?

Partially. The hard drive is automatically encrypted, but FileVault is turned off. I've heard that there was a bug that accidentally enabled FileVault for some users. And boy did those people get upset! "How dare Apple have a bug that makes my system more secure! Fire the CEO immediately!"

Why did Apple elect to do this?

Encryption is always a confusing topic. Apple's new system tries to make it more secure by default. This way, even if there's some kind of bug, as happened recently, then it will manifest as making the system more secure.

Has this FileVault Auto Enabled, upon initial installation, been fixed since version 26.2 ?

These individuals may have been running Tahoe 26.1

Your insights are welcome

https://discussions.apple.com/thread/256197632?answerId=261710309022&sortBy=oldest_first#261710309022

https://discussions.apple.com/thread/256193372?answerId=261699643022&sortBy=oldest_first#261699643022

If you don't have really sensitive data on your Mac and are not in a public location, i.e. a work station, they encryption IMO is just not needed.

If you live in an apartment building where there are strangers in and out then FV might be a good idea. However, if you're in a home (house) it may be not necessary. I've never had encryption on any of my Macs as long as I've had Macs - coming on to 40 years. Again that's my opinion and your situation may be much different from mine.

Just some food for thought.

There is one possible disadvantage for some. You can't automatically log in with FileVault enabled.

Update my profile as well and Other stuff