I.e. if half of otherwise identical Asus machines are excluded based on chromeOs then Asus has a better than stated position on hardware volume but not Microsoft licenses. OsX has an entirely different situation and luckily easy to separate yourself but is included..
not that im a fan of things like the surface either, i see why theyre useful for designers and such but to me a laptop needs a decent keyboard and the surface keyboard cover just isnt
but maybe im just old fashioned as i dont even see the point of a non convertible laptop with a touchscreen, reaching over the keyboard to press something feels much more awkward and less intuitive than just using the touchpad
personally id be tempted to just separate the markets by OS as that is likely the deciding factor before anything else, eg no matter how powerful the hardware you wouldnt buy a chromebook as a gaming machine as there arent the games for it.
yes OsX may be more general purpose than ChromeOS but to me it still has a specific market, if youre buying a mac you either need it for a specific app or youre not doing anything particularly important (web browsing, document writing, video watching) and just want something fashionable (or youre used to the OS and dont want to change)
For any non-trivially large fleet, you should a) be wiping the disk on a frequent basis so that users don't save work locally, b) have replacement "cattle" machines ready to go whenever an employee comes into the shop, rather than fixing the employee's "pet" machine and having the employee wait for the fix. It may be more expensive to run a Surface fleet, for the reasons you mention, but that doesn't mean it's not a business-class machine, it means that maybe Surface economics don't work out for your company.
Also, this is not for my threat model, but it could be appropriate for certain corporate travelers or journalists.
BitLocker only allows you ten attempts to enter the TPM PIN, and if the bootloader is modified by an attacker, the TPM will refuse to release the key.
Also does it require it when comes from hibernation? Because by default Surface Pro powers off after certain time in connected standby, therefore if BitLocker pin is active after wake up the user is safe.
Edit: I mean quality of Windows is much worse. It may have ingenious design internally but what user sees is just awful.
I agree that design or certain features can be very much personal preference thingy so I’m only discussing quality.