IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [bitlocker]

A logical volume encryption feature included with specific versions of Microsoft Windows Vista and later.

BitLocker is a logical volume encryption feature included with specific versions of Microsoft Windows Vista and later.

Related reading

168 questions
1
vote
1 answer

BitLocker: CBC vs XTS and FIPS 140-2

I have a twofold question, first when choosing between AES-CBC and AES-XTS which is more secure. From my reading XTS is more secure in some respects but not in others when compared to CBC. Second are both modes FIPS 140-2 approved? Related to that…
Thorin
  • 111
  • 2
1
vote
0 answers

ROCA attack on TPM - public key extraction

I was reading about the ROCA attack, and how a lot of software is vulnerable. Apparently Bitlocker from Microsoft is also vulnerable, because it protects its keys with SRK of (ROCA vulnerable) TPM. But what I don't understand is how would an…
Sendenbar
  • 11
  • 2
1
vote
1 answer

Windows 10 FIPS140 Bitlocker without using System Cryptography policy

We have an app that makes use of Non FIPS compliant AES256 System.Cryptography calls. My question is, can Bitlocker be FIPS140 compliant on a PC, but not need the FIPS algorithm set for .NET calls? For the U.S. Government (VA), are told we need the…
Ben Butzer
  • 121
  • 4
1
vote
2 answers

HDD password vs Bitlocker

I have a Samsung SSD 850 with an HDD password set. It seems from articles such as this and this that the data is fully encrypted, and requires the password to view. Is there any requirement or advantage to having Bitlocker as well?
wezten
  • 113
  • 4
1
vote
0 answers

Why you can I use FileVault without CD, USB, floppy etc. for system start/rescue, but not BitLocker or VeraCrypt?

I have encrypted my harddrive on mac with FileVault. I can start my system with password only. To recover the system I had to store a rescue password for example as a picture. With BitLocker (without TPM) there is a USB needed for every start of the…
MikroDel
  • 111
  • 5
1
vote
1 answer

How secure is BitLocker with a USB key on the motherboard

I've been reading a bit about using BitLocker without a TPM chip and I've seen here and there that some people advise to use a USB stick for ease, and plug it into an internal USB header converter and configure BitLocker to require it present every…
Gelunox
  • 113
  • 3
1
vote
2 answers

BitLocker: switch from password to USB method of encryption

I'm in the process of setting up encryption on some machines in the office, and BitLocker is the obvious choice for Windows ones. Some computers already have BitLocker activated with password protection, but our aim is to use USB keys with all of…
stassinari
  • 143
  • 5
1
vote
0 answers

Is there any readily available rootkit that attacks Bitlocker systems?

My 3rd gen Thinkpad X1 Carbon with Windows 10 (protected by Bitlocker) and Ubuntu installed asked for my recovery key. Thinking it was just a kid messing with it, I typed in the recovery key. But there are a few things that raise suspicion: The…
genealogyxie
  • 431
  • 3
  • 13
1
vote
0 answers

Data recovery from BitLocker encrypted device that has been quick-formatted

I apologize if this is in the wrong place, but I couldn't find anywhere else that seemed appropriate for these questions. My classmate has a 512GB USB drive that he had formatted as exFAT and encrypted with BitLocker To Go. Something then happened…
silver
  • 11
  • 1
0
votes
1 answer

Does BitLocker with SED require a TPM?

Assuming a BIOS that supports SED (Self Encrypting Drive) hard drives, and given that Windows 8 will use hardware encryption like SED if the disk has it, does BitLocker still require a TPM to avoid using USB? This regards a standalone laptop not…
simpleuser
  • 135
  • 8
0
votes
1 answer

bitlocker and data retrieval

The data on my hard disk was deleted from an encrypted bitlocker hard disk. After deleting the data, a new partition including a new installation of windows was created on the same hard disk. The key to the original bitlocker encrypted data is…
Katt
  • 103
  • 1
0
votes
1 answer

Securely wipe external drive with Windows only

Consider following 2 disk wipe procedures, using only vanilla Windows installation: First do a quick-format to make the disk appear empty, then do one of these: Just do full format of the disk. Bitlocker-encrypt the entire drive (all space) using a…
hyde
  • 101
  • 4
0
votes
1 answer

A Question about Database Encryption

I've been looking around for an answer to this for some time now and I felt that this place would be a good venue to ask this. How can one improve the security in a MySQL database? The database that I am currently playing around with only has its…
Shabutie
  • 3
  • 1
0
votes
1 answer

When using Bitlocker and I am logged into a PC is the data accessible for outside devices? (mounted)

I am wondering what happens when I log into an encrypted Windows PC - could an attacker steal data from the PC while logged in or is it encrypted and to access the drive he would need the Bitlocker key? Does it actually prevent data breaches?
noto77
  • 31
  • 3
0
votes
0 answers

fTPM more secure than TPM when using Bitlocker?

Is fTPM more secure than a real TPM module when using Bitlocker? As far as I know, you should enable pre-boot authentication if you use a TPM module that is plugged separately onto the motherboard to prevent possible reading / sniffing of the key…
Opa114
  • 101
  • 1
1 2 3
11 12