New
#1
Bit Locker in Windows 7
Can anyone point me to a technical paper for the version of Bit Locker that is in Windows 7?
I specifically need to know if it has FIPS 140-2 support
Can anyone point me to a technical paper for the version of Bit Locker that is in Windows 7?
I specifically need to know if it has FIPS 140-2 support
Thank you for the info, I did find both of these. The problem though is that they do not specifically mention Windows 7 and I know Windows 7 is different.
Any other leads?
This is an important question because Federal agencies and the DoD require FIPS 140-2 certification for encryption of any sensitive or classified data (in transit and at rest). Further, "National Security Systems" (NSS - includes all classified systems) require NIAP Common Criteria (CC) evaluation at various levels... and Common Criteria (below) requires FIPS certification. CC NIST SP800-53 Rev3 (Google it) now combines Federal requirements for both NSS and non-NSS systems (CC evaluated products are still a best practice for non-NSS systems).
See the Microsoft FAQ:
BitLocker Drive Encryption in Windows 7: Frequently Asked Questions
"Is Microsoft pursuing any security certification for BitLocker?
BitLocker Drive Encryption in Windows Vista has Federal Information Processing Standard (FIPS) 140-2 certification. BitLocker is included in the Common Criteria (EAL4+) certification process for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2."
See the FIPS 140-2 certified products list (Vista and Win2K8... not Win7):
Validated 140-1 and 140-2 Cryptographic Modules
FIPS certification is required for Common Criteria evaluation -- Win7 is not yet even undergoing evaluation at this point (unlike Vista and Win2K8):
NIAP CCEVS: Products and Protection Profiles in Evaluation