Quote: Originally Posted by sandymay
I was looking to use bit locker to encrypt my whole drive but came across a couple of articles stating this app was not secure.
I was just wondering how it compares to TrueCrypt, would TC be better or do people feel safe with Bit Locker?
In February 2008, a group of security researchers published details of a so called "cold boot attack" that allows a Bitlocker-protected machine to be compromised by booting the machine off removable media, such as a USB drive, into another operating system, then dumping the contents of pre-boot memory. The attack relies on the fact that DRAM retains information for up to several minutes (or even longer if cooled) after power has been removed. Use of a TPM module alone does not offer any protection, as the keys are held in memory while Windows is running, although two-factor authentication, i.e. using TPM together with a PIN, offers better protection for machines that are not powered on when physical access to them is obtained. Similar full disk encryption mechanisms of other vendors and other operating systems, including Linux and Mac OS X, are vulnerable to the same attack. The authors recommend that computers be powered down when not in physical control of the owner (rather than be left in a "sleep" state) and that a password also be required to boot the machine. Center for Information Technology Policy » Lest We Remember: Cold Boot Attacks on Encryption Keys
TrueCrypt suffers the same "vulnerability".