Solved

BitLocker on kiosk

Posted on 2011-03-14
3
748 Views
Last Modified: 2012-05-11
Using Windows Embedded we create kiosks with proprietary software.  Using Bitlocker, or something similar is a good way of encrypting a drive and the proprietary software.  However in the case of Bitlocker it needs a TPM or USB key inserted at startup - neither are feasible at this time.  Ideally we would like to encrypt a drive on the unit but give permission for certain software to run from it while keeping it encrypted. The goal would be to prevent unathorized access to the encrypted partition at runtime.  Possible? ideas?  Thanks.
0
Comment
Question by:suprdupr
3 Comments
 
LVL 25

Accepted Solution

by:
RobMobility earned 250 total points
ID: 35127754
Hi,

Bitlocker and similar encryptions systems are designed to protect data at rest - i.e. the drive is encrypted when powered down, but unencrypted fully once authenticated.

Your scenario would be better served using either NTFS file permissions (i.e. the account running the service that needs to run the software) or perhaps EFS?

You can still use alternative Encryption solutions for boot-time protection - it's whether they are supported on Windows Embedded isn't clear -

You could look at something like Spyrus SPD - effectively, you'd run your whole Windows CE environment from a fash,encrypted USB Pen-drive which enables you to lock it etc?
0
 
LVL 27

Expert Comment

by:Tolomir
ID: 35381956
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
wondershare 17 57
Windows NLB cluster 3 28
Malwarebytes keeps blocking this..... 6 34
Home wireless security 10 47
The 21st century solution to antiquated pagers.
How do we balance the user experience (UX) with reasonable security measures? It can be done, if you keep these fundamentals in mind.
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

774 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question