If I were to be infected with malware because of a BYOVD exploit because I was unable to implement the proper security measure will HTC reimburse my losses? I think not.
Is there a reason why HTC expects me to spend hundreds of dollars for a VR headset and at the same time not provide an updated (read compatible) driver that conforms to the HVCI requirements that have been expected for the past four years? HTC has been made aware of this issue countless times since then. The btwusb.sys driver (mentioned in the OP) provided for HTC Vive and Vive Cosmos headsets prevents this setting from being enabled.
It is normal, since April 2018 update of Windows 10, to have Memory Integrity/Core Isolation enabled on new installs of Windows operating systems.
