Bitlocker without TPM - Security or Security Theater?


  1. thebrillig
    Posts : 1
    Windows 7 Ultimate x64
       New #1

    Bitlocker without TPM - Security or Security Theater?


    I'm trying to figure out if I understand this. To use BitLocker without a TPM, you put the encryption key on a flash drive. Since you can't protect the key, anyone who has both the flash drive and the physical hard drive has all your data and the key needed to decrypt it.

    According to Microsoft's recommended best practices, the flash drive should never be left in or kept with the encrypted machine. This seems like an unrealistic expectation, especially with a laptop. It feels like if you don't have TPM, using BitLocker is just theater.
      My Computer
    Quote Quote

  3. seth500
    Posts : 968
    Windows 7 Ultimate x64
       New #2

    I use True Crypt myself that way I don't have to put anything anywhere except in my head. Using the hidden true crypt container you can even fool people that you have given them the contents of the container when you really haven't. That would be under extreme circumstances like extortion and torture which would never happen in the real world...
      My Computer
    Quote Quote

  4. Britton30
    Posts : 24,479
    Windows 7 Ultimate X64 SP1
       New #3

    Also there are flash drives that can be encrypted too. It's like your car keys, you don't leave the keys in the ignition.
      My Computer
    Quote Quote

 

  Related Discussions
Hi everyone! I hope you can help me i turned on my computer and this eror appeared it's been over 2 hours already and it's still running.. Do you have any clue what should i do? I want to make i won't lose all my files Thank you so much! http://i.imgur.com/DBvjRpO.jpg
bitlocker security RECOVERY
in System Security

Please how can I Get My BitLocker recovery key using the recovery id no
Outlook 2010 Security warning upon opening Outlook: Initial problem: Work email from home computer stopped sending (had been working fine), though I have no problem receiving email. (Note: Home email account continues to work fine.) Email host Support (Comcast) worked me through finding the right...
I use a jump drive to unlock by notebook using Bitlocker. At the moment I have one folder for all my PC files and the other files that are not located in a folder are my Puppy Linux files for booting from the drive and my Bitlocker key file. Can I place the Bitlocker key file in the PC folder?...
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 21:54.
Find Us