> TPM-backed full-disk encryption (FDE) is introduced as an experimental feature, building on years of experience with Ubuntu Core. On supported platforms, you no longer need to enter passphrases at boot manually. Instead, the TPM securely manages the decryption key, providing enhanced security against physical attacks.
Shameful to see Ubuntu fall into the trap that Microsoft created, where you don't own your computer anymore and it actively prevents you from accessing your own data with DRM.
You've misunderstood. Ubuntu's TPM-backed full-disk encryption isn't DRM like the type used to prevent you from copying movies. It's meant to assist your own privacy and security, by prevent other people from accessing your own data.
For example if your laptop is lost, stolen, left in a shop, seized by bailiffs, sent in for a repair, etc., or if it's a server in a data center, making it more difficult for someone to read the server's data without authorization.
Preventing access to data is the whole point of encryption. TPM stores the key to the drives attached to the machine, effectively tying the keys to the device + drive combination. (Doesn't Apple do the same?) And if you're afraid of being locked out, you have backups elsewhere, right?
Shameful to see Ubuntu fall into the trap that Microsoft created, where you don't own your computer anymore and it actively prevents you from accessing your own data with DRM.