• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 130
  • Last Modified:

Windows 10 Pro "bitlocker" -- cracking steps ?

I am thinking about adding a a TPM chip and Bitlocker to my Windows 10 Pro "DOMAIN-JOINED" laptop

What "windows bitlocker cracking" steps can I do if I need to easily recover later ?

https://blogs.technet.microsoft.com/hugofe/2010/10/29/bitlocker-without-tpm/

https://www.howtogeek.com/287737/how-to-check-if-your-computer-has-a-trusted-platform-module-tpm-chip/
0
finance_teacher
Asked:
finance_teacher
9 Solutions
 
JohnBusiness Consultant (Owner)Commented:
What "windows bitlocker cracking" steps can I do if I need to easily recover later ?

You are pretty much screwed if that happens. Keep a proper record of the password.

Why people do not keep passwords is beyond me.
0
 
David Johnson, CD, MVPOwnerCommented:
There are no cracking steps.. That is by design.  Why would you even consider encrypting your drive if someone else can easily unencrypt it.
2
 
serialbandCommented:
Encryption is always designed to be secure enough that the current methods of accessing the data would take years of concerted effort to break with current technology.  You will not be able to crack current bitlocker encryption in any useful time to make the data relevant.  Someday, with more powerful computers or quantum computing, all encryption may become obsolete.  However, by that time, a newer method of encryption using quantum computers will likely exist.

There are currently no cracks, but there are ways to retrieve keys from an already running, and therefore decrypted volume.  This usually involves phishing the user so that they install software to retrieve the encryption keys from running memory.
https://arstechnica.com/information-technology/2009/12/first-commercial-tool-cracks-bitlocker/
https://blog.elcomsoft.com/2016/06/breaking-bitlocker-encryption-brute-forcing-the-backdoor-part-i/

The only other way around these is to find a flaw in the encryption algorithm.  This usually happens when the programmer makes a mistake in the coding, rather than an actual problem with the algorithm itself, although that can also happen.
0
WEBINAR: 10 Easy Ways to Lose a Password

Join us on June 27th at 8 am PDT to learn about the methods that hackers use to lift real, working credentials from even the most security-savvy employees. We'll cover the importance of multi-factor authentication and how these solutions can better protect your business!

 
JohnBusiness Consultant (Owner)Commented:
Trying to crack the algorithm is a waste of time when it takes ONE minute to secure and save a password on a different machine.
0
 
serialbandCommented:
That's what I basically said with much more detail.  I'll repeat:
There are currently no cracks...
1
 
Dr. KlahnPrincipal Software EngineerCommented:
I'm sure that the CIA forced Microsoft to put in a backdoor of some kind, but I'm equally sure that it'll be twenty years before even the existence of the backdoor is revealed.

For everybody else, serialband is correct.  There are no cracks and brute forcing it is not practical with current technology.

("Not practical" being defined as "50% chance of results within the span of one average human lifetime.")
0
 
JohnBusiness Consultant (Owner)Commented:
That is also what David and I said / strongly implied at the beginning
0
 
serialbandCommented:
We're all saying the same thing.  I just explained the why and how, in a bit more detail.  Any cryptographer worth their salt will agree that any backdoor is a flaw in the design.  Anyone that wants a backdoor doesn't want any real security.
0
 
McKnifeCommented:
"...if I need to easily recover later ?" - you use the recovery key. It works anywhere, under all circumstances.
Of course it will not work when you connect the disk you want to recover to a Mac, but if you connect it to another windows 10, manchine, or boot your own machine hosting the drives with a setup disk, it will work.
1
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

How do you know if your security is working?

Protecting your business doesn’t have to mean sifting through endless alerts and notifications. With WatchGuard Total Security Suite, you can feel confident that your business is secure, meaning you can get back to the things that have been sitting on your to-do list.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now