I have seen a lot of requests for a always on Windows-Hello up to now here, but as you always mention, this isn't that easy to secure the masterkey for the Windows feature then.
So, my question or request ist:
Is it possible to use for example enterprise grade (more or less) features like a TPM chip to create a "trust-anchor"? (I have seen this e.g. as a certificate, which is bound to a key in the TPM chip)
As I understood it Windows has some kind of SDK for TPM.
Or maybe there are also other trust-anchor solutions which don't require a TPM chip.
Maybe there is a way to secure a general Windows-Hello login in the future
I would definitely look forward for something like that
1Password Version: 7.3.702
Extension Version: 220.127.116.11
OS Version: Windows 10 1903 18362.239
Sync Type: Dropbox