Subscribe to FeedAshworth Network Technician-Security Instructor Discusses Microsoft’s Latest Drive Encryption Technology
Thanks to NASA, ESA-Hubble Collaboration for permission to use Photo.
One of the security weaknesses experienced with laptops and other portable computer devices for many years is the simplicity in which their drives could be compromised if the device is stolen. This was especially true before Windows XP and Windows 2000 when a thief could simply install a second operating system on the laptop, logon to the new operating system and gain admin rights to all the data on the drive.
Windows XP and Windows 2000 introduced EFS, Encryption File System, which allowed users to encrypt files of their choosing. Because the encryption was centered on an encryption key based upon the original operating system, an intruder couldn’t access that file simply by accessing it through another operating system. However, this required the user to individually encrypt every file or folder in order to protect all of their data. Needless to say, the majority of users failed to do this.
Microsoft has introduced a new technology called BitLocker with Windows2008 and premium flavors of Windows Vista. BitLocker encrypts the entire drive, including the Windows system files necessary for startup and logon, which could give an intruder the ability to discover passwords and logon information. What’s more, BitLocker utilizes a feature called Integrity checking which analyzes the early boot components and helps to ensure that data decryption is performed only if those components appear unmolested and that the encrypted drive is located in the original computer. This prevents thieves from stealing your hard drive and putting it into another computer to access the data.
It will also make it much easier for organizations to recycle old computers as they will not have to worry about erasing data on machines being decommissioned as the drives will be inaccessible. BitLocker is a great new addition to the Windows operating system and should be implemented by any organization or individual that works with sensitive data.
Brad Rudisail
Computer Network Technician-Network Security Instructor
Ashworth University
April 30th, 2008 at 11:12 am
[…] [Technorati] Tag results for spyware wrote an interesting post today onHere’s a quick excerptAshworth Network Technician-Security Instructor Discusses Microsoft’s Latest Drive Encryption Technology April 30th, 2008 One of the security weaknesses experienced with laptops and other portable computer devices for many years is the simplicity in which their drives could be compromised if the device is stolen. This was especially true before Windows XP and Windows 2000 when a thief could simply install a second operating system on the laptop, logon to the new operating system and gain adm […]
April 30th, 2008 at 11:37 am
[…] Digital Dave wrote an interesting post today onHere’s a quick excerptMicrosoft has introduced a new technology called BitLocker with Windows2008 and premium flavors of Windows Vista. BitLocker encrypts the entire drive, including the Windows system files necessary for startup and logon, which could give … […]