@aeichner;
I think we are coming to a dropping off point with Windows. I think it is all version-related. Maybe different versions of VirtualBox based on Windows Version(s)?
They are all going to cloud-level interaction (or seem to be) and the controls we have to turn on or off settings in the field are starting to exclude features that look for these settings to be "on" (or they will silently change the state as in Hyper-V for Windows Home Security) or they will not work (like password-less MS main accounts, Windows Hello PIN, etc.)
I know we can log and fix problems here in the forum(s) as they move the goal post to "zero trust" platforms, but at some point, they will lock down the OS from any outside platform, or the system developers (like you and yours) will just get tired of having to move targets around to meet the newer system settings.
Or a piece of hardware (like a proprietary chipset (not TPM) device already being discussed) that will lock the device to protect the typical (not aware) consumer (Home and S Users).
I know first hand from work experience how disappointing it is to work for months (back in 1979) inputting data as an IT tech, just to have the IT pro come to the floor and tell us we missed a line of input code (80 Character Format) and we need to rewind the tapes and start over. Such as downer for the crew, as we only had a handful of people that could be trusted (maybe 30%) of our workforce that could actually run a keyboard properly (and that is not a typing skill, it is all motor!).
Could it be that this is best handled with a "real" Windows Version (Pro or Higher) in the future? I just hate seeing this whole thing develop as it is, and out of a great amount of concern and respect for you and the Oracle Team as they grapple with these dynamic changes.
As a close, this is a good thing for Windows as an OS, and I welcome a more secure OS environment as long as they can give us a proper ring of trust. I know VMWare has that in large part, just hoping we will get included.