IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [disk-encryption]

Disk encryption is a special case of data at rest protection when the storage media is a sector-addressable device (e.g., a hard disk).

Disk encryption is a special case of data at rest protection when the storage media is a sector-addressable device (e.g., a hard disk).

588 questions
0
votes
1 answer

How does Windows use the TPM for BitLocker encryption without an attacker being able to do the same?

How does Windows use the TPM for BitLocker encryption without an attacker being able to do the same? From this FAQ, I understand that BitLocker uses the following keys to encrypt the hard-drive: Full volume encryption key (used to encrypt raw…
Shuzheng
  • 1,097
  • 4
  • 22
  • 37
0
votes
1 answer

On a mobile, does using a password instead of a PIN make encryption stronger?

On a mobile, does using a password instead of a PIN make encryption stronger? What key does the phone use for its encryption? Would it use the PIN itself?
Alberto Salvia Novella
  • 151
  • 1
  • 8
0
votes
1 answer

security of cryptsetup(8) luksRemoveKey, feasibility of extracting MasterSecretKey and using it later

I looked at https://crypto.stackexchange.com/a/24024 and it seems to me cryptsetup(8) luksRemoveKey is weak. The situation: I create new LUKS volume, copy stuff into it. I add a new pass phrase, and give (a copy of) the encrypted volume and the new…
Z.T.
  • 7,768
  • 1
  • 20
  • 35
0
votes
1 answer

How is the DEK in a SED drive encrypted?

I am using a Samsung Evo 960 NVME SSD. I have encrypted the SSD using its built in hardware encryption features, which follow the tcg opal standard. If I understood correctly, the disk encrypts all data using AES-256. The key for this encryption is…
Gasp0de
  • 133
  • 6
0
votes
1 answer

BitLocker To Go password strength

When using BitLocker To Go, given that removable drives are inherently offline and may have to resist such attacks, what are the best practices / recommendations for password strength?
mythofechelon
  • 217
  • 1
  • 11
0
votes
0 answers

Protecting/Crypting an external storage

We have an camera with sd card in which it records. AFAIK its software, recording parts etc., cannot be stepped in. We wish a mechanism/methodology that whenever it is plugged into usb socket of a computer(i.e. via sd card reader), data which is…
snr
  • 101
  • 2
0
votes
1 answer

Backing up an encypted drive on an encrypted drive

I have searched, and have been unable to find an adequate answer to my question. My apologies as I'm sure this is a relatively elementary question for the users here. I have encrypted my Windows 10 boot drive with BitLocker. I have also encrypted…
DRoyLenz
  • 1
0
votes
1 answer

Where is Bitlocker encryption key stored in USB?

I have a USB that contains the Bitlocker key. When I open USB I dont see any files inside. How can I move the Bitlocker key to another USB?
Rembo
  • 17
  • 4
0
votes
1 answer

Security/Privacy OS With Boot On Thumbdrive

I am looking for a security-centered Linux OS that allows you to take the /boot partition on a thumb-drive to alleviate concerns of an Evil Maid Attacks! What OS is it easy to remove the /boot partition and carry on a thumb-drive? How would you go…
BestReasonofWiseMen
  • 21
  • 2
0
votes
1 answer

Startup PIN security considerations for BitLocker

I plan to implement Bitlocker encryption on my devices, but I wonder how to achieve the highest possible security against offline attacks. I understood the following: I can enable TPM based protection only, which ensures that the drive is encrypted…
Jessi
  • 3
  • 1
0
votes
4 answers

Should I change to VeraCrypt on win7 SSD from TrueCrypt 7.1a?

Is still safe for me to use TrueCrypt or should I change to VeraCrypt as the last update boot won`t take long anymore. Any backdoors to decrypt TrueCrypt?
Cryptodwe
  • 1
  • 2
0
votes
2 answers

Encrypting my hard drive using bitlocker

I would like to encrypt my C drive using bitLocker which is the only partition on my windows 10 computer. Is it better to separate the disk into partitions, for example: a partition for the OS and another one for the data and then encrypt them…
user181612
0
votes
1 answer

What are `dd` input blocks?

I'm looking for a semi-technical explanation of "input blocks". When creating encrypted containers we use dd with "count=n", but I'm not sure of the difference between "count=0" and "count=1". The dd manpage simply states: count=N copy…
user184947
  • 3
  • 1
0
votes
1 answer

Does WD My Passport WDBYFT0040BBK-WESN have encryption vulnerability?

Recently I came across this whitepaper: https://eprint.iacr.org/2015/1002.pdf It states vulnerabilities in Western Digital hard drives but doesn't include exact model numbers. I have WD My Passport WDBYFT0040BBK-WESN and I wonder if my hard drive is…
Defozo
  • 113
  • 4
0
votes
1 answer

best way to encrypt code and data on IOT device?

I have R scripts which are running on a Raspberry Pi device. I want to encrypt the code and data on the device so that if anyone unmounts the disk and try to read the content via other devices they should not be able to do it. I used ecryptfs for…
anand
  • 103
  • 2
1 2 3
39 40