Windows 10 Pro "bitlocker" -- cracking steps ?

I am thinking about adding a a TPM chip and Bitlocker to my Windows 10 Pro "DOMAIN-JOINED" laptop

What "windows bitlocker cracking" steps can I do if I need to easily recover later ?

https://blogs.technet.microsoft.com/hugofe/2010/10/29/bitlocker-without-tpm/

https://www.howtogeek.com/287737/how-to-check-if-your-computer-has-a-trusted-platform-module-tpm-chip/
finance_teacherAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

JohnBusiness Consultant (Owner)Commented:
What "windows bitlocker cracking" steps can I do if I need to easily recover later ?

You are pretty much screwed if that happens. Keep a proper record of the password.

Why people do not keep passwords is beyond me.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
David Johnson, CD, MVPOwnerCommented:
There are no cracking steps.. That is by design.  Why would you even consider encrypting your drive if someone else can easily unencrypt it.
2
serialbandCommented:
Encryption is always designed to be secure enough that the current methods of accessing the data would take years of concerted effort to break with current technology.  You will not be able to crack current bitlocker encryption in any useful time to make the data relevant.  Someday, with more powerful computers or quantum computing, all encryption may become obsolete.  However, by that time, a newer method of encryption using quantum computers will likely exist.

There are currently no cracks, but there are ways to retrieve keys from an already running, and therefore decrypted volume.  This usually involves phishing the user so that they install software to retrieve the encryption keys from running memory.
https://arstechnica.com/information-technology/2009/12/first-commercial-tool-cracks-bitlocker/
https://blog.elcomsoft.com/2016/06/breaking-bitlocker-encryption-brute-forcing-the-backdoor-part-i/

The only other way around these is to find a flaw in the encryption algorithm.  This usually happens when the programmer makes a mistake in the coding, rather than an actual problem with the algorithm itself, although that can also happen.
0
Make Network Traffic Fast and Furious with SD-WAN

Software-defined WAN (SD-WAN) is a technology that determines the most effective way to route traffic to and from datacenter sites. Register for the webinar today to learn how your business can benefit from SD-WAN!

JohnBusiness Consultant (Owner)Commented:
Trying to crack the algorithm is a waste of time when it takes ONE minute to secure and save a password on a different machine.
0
serialbandCommented:
That's what I basically said with much more detail.  I'll repeat:
There are currently no cracks...
1
Dr. KlahnPrincipal Software EngineerCommented:
I'm sure that the CIA forced Microsoft to put in a backdoor of some kind, but I'm equally sure that it'll be twenty years before even the existence of the backdoor is revealed.

For everybody else, serialband is correct.  There are no cracks and brute forcing it is not practical with current technology.

("Not practical" being defined as "50% chance of results within the span of one average human lifetime.")
0
JohnBusiness Consultant (Owner)Commented:
That is also what David and I said / strongly implied at the beginning
0
serialbandCommented:
We're all saying the same thing.  I just explained the why and how, in a bit more detail.  Any cryptographer worth their salt will agree that any backdoor is a flaw in the design.  Anyone that wants a backdoor doesn't want any real security.
0
McKnifeCommented:
"...if I need to easily recover later ?" - you use the recovery key. It works anywhere, under all circumstances.
Of course it will not work when you connect the disk you want to recover to a Mac, but if you connect it to another windows 10, manchine, or boot your own machine hosting the drives with a setup disk, it will work.
1
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Encryption

From novice to tech pro — start learning today.