Encrypt whole notebook

Posted on 2014-03-30
Last Modified: 2016-11-23

I´m going to purchase a Dell windows based notebook and I´d like to encrypt whole machine. Right now, I use macbook pro with filevault...I need something like this for a dell notebook

Any idea?

Question by:heze54
  • 3
  • 3
  • 2
  • +2
LVL 15

Accepted Solution

cwstad2 earned 250 total points
ID: 39964733
yes truecrypt. free and simply the best. does it on the fly and has many features
LVL 13

Expert Comment

by:Andy M
ID: 39965153
Depends on the OS that you are running. As mentioned above Truecrypt is great but as far as I'm aware it doesn't work correctly with Windows 8. (I understand it's due to be updated at some point for this)

If it's running Windows 8 (Pro or Ultimate) try using the built in Bitlocker - this seems to work pretty well too.
LVL 15

Expert Comment

ID: 39965190
LVL 14

Assisted Solution

by:Giovanni Heward
Giovanni Heward earned 250 total points
ID: 39965273
Purported TrueCrypt/Win8 incompatibilities have more to do with UEFI (Unified Extensible Firmware Interface) and Secure Boot.

Windows 8 introduces a new requirement for PC manufacturers (OEMs) that may require modifications to your OS deployment infrastructure.  That requirement ensures that all Windows 8 systems are shipped with their BIOS in UEFI Mode and Secure Boot enabled.

When the PC starts, the firmware checks the signature of each piece of boot software, including firmware drivers (Option ROMs) and the operating system.
Secure Boot Overview

TrueCrypt Future Plans
The following features are planned to be implemented in future versions:
    Full support for Windows 8
    Ability to encrypt Windows system partitions/drives on UEFI-based computers (GPT)

Secure Boot Sequence


After the PC is turned on, the signature databases are each checked against the platform key.


If the firmware is not trusted, the UEFI firmware must initiate OEM-specific recovery to restore trusted firmware.


If there is a problem with Windows Boot Manager, the firmware will attempt to boot a backup copy of Windows Boot Manager. If this also fails, the firmware must initiate OEM-specific remediation.


After Windows Boot Manager has started running, if there is a problem with the drivers or NTOS kernel, Windows Recovery Environment (Windows RE) is loaded so that these drivers or the kernel image can be recovered.


Windows loads antimalware software.


Windows loads other kernel drivers and initializes the user mode processes.
TrueCrypt and Secure Boot interfere with one another beginning with Step 3.

You can use Windows 8+ with existing versions of TrueCrypt, you'll just need to disable UEFI and Secure Boot.

The ideal solution from an authentication stand-point would be to incorporate true one time password generation, with replay attack immunity, with TrueCrypt to thwart keyloggers.

Using MITRE Copernicus (or similiar) to verify the integrity of BIOS firmware could be used as an extra precaution in the meantime.
LVL 53

Expert Comment

ID: 39965297
Buy one with win8 pro and make sure the notebook has a Tpm chip. Then, bitlocker is an option. Since it supports the TPM chip, you can use a relatively short PIN and nevertheless be secure.
Give your grad a cloud of their own!

With up to 8TB of storage, give your favorite graduate their own personal cloud to centralize all their photos, videos and music in one safe place. They can save, sync and share all their stuff, and automatic photo backup helps free up space on their smartphone and tablet.


Author Comment

ID: 39971408

The OS is a win 7 pro 64 bits
LVL 53

Expert Comment

ID: 39971504
So you don't have the notebook yet but you are sure you will install and use 7 pro on it? (Because Dell will sell new hardware with win8.1/8.1 pro).

Author Comment

ID: 39971538
Purchased a win 7 pro license
LVL 53

Expert Comment

ID: 39971545
Ok, you obviously want to use 7. 7 pro does not feature bitlocker.
Then use truecrypt (while disabling secure boot in the UEFI Bios as mentioned) or some other encryption that is free like disk cryptor, a truecrypt spin-off.

Author Closing Comment

ID: 39981125
A++.Thanks a lot

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
Explore the encryption capabilities built into Google Apps and how these features can help you meet privacy policy and regulatory compliance, but are not a full solution. Understand and compare the most popular email encryption services for Google A…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

943 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now