Solved

BITLOCKER SECURITY.

Posted on 2014-11-17
7
166 Views
Last Modified: 2014-11-18
I now am using bitlocker. I want to know an expert's opinion of how secure it is. I am NOT worried about a "professional" hacker, only people that have some knowledge of computers. Am I safe from a knowledgable computer person that wants to get into my drive or would that take a high level hacker?
0
Comment
Question by:Need-a-Clue
7 Comments
 
LVL 19

Assisted Solution

by:*** Hopeleonie ***
*** Hopeleonie *** earned 75 total points
ID: 40449082
Bitlocker is more secure if you have a TPM chip. We use Bitlocker on our company and it is very safe.

More info:
http://technet.microsoft.com/en-us/library/cc732774.aspx
0
 
LVL 3

Assisted Solution

by:Matt D
Matt D earned 100 total points
ID: 40449137
To secure Bitlocker requires the use of a TPM, configured with Safe Boot to prevent unauthorized boot media.  

Windows 8 OS's with UEFI and TrustedBoot can further secure the boot process.

Group / Local policy can be used to lock down settings and configure the storage of encryption keys.
0
 
LVL 53

Accepted Solution

by:
McKnife earned 325 total points
ID: 40449163
"people that have some knowledge of computers" have no chance to get in. Only if you see yourself as the target of some professional, you would need to start worrying - then we would have to look at what type of key you are using.
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 

Author Closing Comment

by:Need-a-Clue
ID: 40449779
EXPERTS, thanks so much for your valuable advice!
McKnife, your comment was exactly what I was hoping to hear. The key I am using is over 25 characters using letters and numbers.
0
 
LVL 53

Expert Comment

by:McKnife
ID: 40449800
One thing: this is a password that you use for preboot authentication? Or do you mount a data volume while windows is already running? Preboot authentication is recommended.
0
 

Author Comment

by:Need-a-Clue
ID: 40449840
I only know how to do it one way. I am NOT well versed in Bitlocker. When windows is running I hook up the external drive that I need protection on. As soon as windows recognizes that the drive has been added it tells me that it needs the bitlocker p/w. I enter the p/w and I am into the external drive.
0
 
LVL 53

Expert Comment

by:McKnife
ID: 40449870
It should be noted that while windows is booted, keyloggers could record the password.
However, possible attackers would need to install that keylogger, first.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
E-mail encryption 7 73
Full Laptop encryption with preboot authentication 4 73
PGP key : industry standard 2 67
Why Root CA Cert does not have expiration date? 2 37
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now