breaking Bitlocker password

Apple appy · Oct 16, 2014

Can I rely on BitLocker to protect my files without worrying that the encryption could be easily bypassed?

COLGeek · Oct 16, 2014

Bitlocker can not be easily bypassed. It is very secure.

nick779 · Oct 16, 2014

Bitlocker also communicates with the Trusted Platform Module on the motherboard preventing anyone from removing it and putting the drive in a dock or another computer and reading it.

Oh, and the only way to open it up is to get the 32 character key from its computer account in active directory(if its domained).

johnbl · Oct 16, 2014

it is true that the encryption is not easy to bypass.

COLGeek · Oct 16, 2014

johnbl :

Short of some sort of brute force attack that could take a lifetime to complete, I know of no means to bypass bitlocker.

While, technically, any means of encryption can be defeated, the feasibility of doing so is minimal at best.

From a user's perspective, I see no practical risk to securing their data with bitlocker (unless they forget their password and lose their recovery key at which point the data is ultimately secure and effectively gone from existence).

johnbl · Oct 16, 2014

except, if you get access to a powered on machine. You can pop the RAM in to a RAM reader and read the decrypt key.
so power off your machine if not in use and don't use a suggested key.

COLGeek :

COLGeek · Oct 16, 2014

johnbl :

except, if you get access to a powered on machine. You can pop the RAM in to a RAM reader and read the decrypt key.
so power off your machine if not in use and don't use a suggested key.

COLGeek :

Huh? As soon as you "pop out the RAM", there is nothing to read.

You are correct about access to a powered on system. If you leave a logged into rig unsecure, all of your data is at risk.

johnbl · Oct 16, 2014

no longer true, people did just that 6 years ago and showed they could grab the decrypt keys from the ram.

guess the ram memory does not fully discharge for 2 or 3 minutes after they are unplugged.
and you get more time if you cool them down.

COLGeek :

johnbl :

Huh? As soon as you "pop out the RAM", there is nothing to read.

You are correct about access to a powered on system. If you leave a logged into rig unsecure, all of your data is at risk.

COLGeek · Oct 16, 2014

johnbl :

no longer true, people did just that 6 years ago and showed they could grab the decrypt keys from the ram.

guess the ram memory does not fully discharge for 2 or 3 minutes after they are unplugged.
and you get more time if you cool them down.

COLGeek :

I vaguely remember that now. AS I recall, it took some fairly constrained conditions to allow it to work. Given modern memory and the low voltages (relatively) being used, I suspect this is even harder to do now.

This is an excellent discussion, BTW.

johnbl · Oct 16, 2014

good point

COLGeek · Oct 16, 2014

What is your source for the above statement? I would like to see in its entire form.

Not to start an off-topic argument, but the NSA showing up on your doorstep doesn't necessarily mean anyone gives them the keys to the kingdom, so to speak.

Search

breaking Bitlocker password

Apple appy

Reputable

COLGeek

COLGeek

Cybernaut

nick779

Honorable

johnbl

Polypheme

COLGeek

Cybernaut

johnbl

Polypheme

COLGeek

Cybernaut

johnbl

Polypheme

COLGeek

Cybernaut

johnbl

Polypheme

COLGeek

Cybernaut

TRENDING THREADS

Latest posts

Moderators online

Share this page