I have a twofold question, first when choosing between AES-CBC and AES-XTS which is more secure. From my reading XTS is more secure in some respects but not in others when compared to CBC. Second are both modes FIPS 140-2 approved? Related to that question if I am using BitLocker on a virtual machine volume with no TPM, only a password would that still be covered? I looked at the following but it didn't really give an answer.
Is BitLocker on a virtual machine FIPS 140-2 security level 1 compliant?