Sign in with
Sign up | Sign in
Your question

breaking Bitlocker password

Tags:
  • Bitlocker
  • Encryption
  • Windows 8
Last response: in Windows 8
Share
October 16, 2014 11:52:35 AM

Can I rely on BitLocker to protect my files without worrying that the encryption could be easily bypassed?

More about : breaking bitlocker password

a b * Windows 8
October 16, 2014 11:55:02 AM

Bitlocker can not be easily bypassed. It is very secure.
m
0
l
October 16, 2014 12:01:40 PM

Bitlocker also communicates with the Trusted Platform Module on the motherboard preventing anyone from removing it and putting the drive in a dock or another computer and reading it.

Oh, and the only way to open it up is to get the 32 character key from its computer account in active directory(if its domained).
m
0
l
Related resources
a b * Windows 8
October 16, 2014 12:15:22 PM

it is true that the encryption is not easy to bypass.

m
0
l
a b * Windows 8
October 16, 2014 12:35:12 PM

johnbl said:
it is true that the encryption is not easy to bypass.


Short of some sort of brute force attack that could take a lifetime to complete, I know of no means to bypass bitlocker.

While, technically, any means of encryption can be defeated, the feasibility of doing so is minimal at best.

From a user's perspective, I see no practical risk to securing their data with bitlocker (unless they forget their password and lose their recovery key at which point the data is ultimately secure and effectively gone from existence).
m
0
l
a b * Windows 8
October 16, 2014 12:40:41 PM

except, if you get access to a powered on machine. You can pop the RAM in to a RAM reader and read the decrypt key.
so power off your machine if not in use and don't use a suggested key.


COLGeek said:
johnbl said:
it is true that the encryption is not easy to bypass.


Short of some sort of brute force attack that could take a lifetime to complete, I know of no means to bypass bitlocker.

While, technically, any means of encryption can be defeated, the feasibility of doing so is minimal at best.

From a user's perspective, I see no practical risk to securing their data with bitlocker (unless they forget their password and lose their recovery key at which point the data is ultimately secure and effectively gone from existence).


m
0
l
a b * Windows 8
October 16, 2014 12:45:55 PM

johnbl said:
except, if you get access to a powered on machine. You can pop the RAM in to a RAM reader and read the decrypt key.
so power off your machine if not in use and don't use a suggested key.


COLGeek said:
johnbl said:
it is true that the encryption is not easy to bypass.


Short of some sort of brute force attack that could take a lifetime to complete, I know of no means to bypass bitlocker.

While, technically, any means of encryption can be defeated, the feasibility of doing so is minimal at best.

From a user's perspective, I see no practical risk to securing their data with bitlocker (unless they forget their password and lose their recovery key at which point the data is ultimately secure and effectively gone from existence).



Huh? As soon as you "pop out the RAM", there is nothing to read.

You are correct about access to a powered on system. If you leave a logged into rig unsecure, all of your data is at risk.
m
0
l
a b * Windows 8
October 16, 2014 1:12:36 PM

no longer true, people did just that 6 years ago and showed they could grab the decrypt keys from the ram.

guess the ram memory does not fully discharge for 2 or 3 minutes after they are unplugged.
and you get more time if you cool them down.


COLGeek said:
johnbl said:
except, if you get access to a powered on machine. You can pop the RAM in to a RAM reader and read the decrypt key.
so power off your machine if not in use and don't use a suggested key.


COLGeek said:
johnbl said:
it is true that the encryption is not easy to bypass.


Short of some sort of brute force attack that could take a lifetime to complete, I know of no means to bypass bitlocker.

While, technically, any means of encryption can be defeated, the feasibility of doing so is minimal at best.

From a user's perspective, I see no practical risk to securing their data with bitlocker (unless they forget their password and lose their recovery key at which point the data is ultimately secure and effectively gone from existence).



Huh? As soon as you "pop out the RAM", there is nothing to read.

You are correct about access to a powered on system. If you leave a logged into rig unsecure, all of your data is at risk.


m
0
l
a b * Windows 8
October 16, 2014 1:38:06 PM

johnbl said:
no longer true, people did just that 6 years ago and showed they could grab the decrypt keys from the ram.

guess the ram memory does not fully discharge for 2 or 3 minutes after they are unplugged.
and you get more time if you cool them down.


COLGeek said:
johnbl said:
except, if you get access to a powered on machine. You can pop the RAM in to a RAM reader and read the decrypt key.
so power off your machine if not in use and don't use a suggested key.


COLGeek said:
johnbl said:
it is true that the encryption is not easy to bypass.


Short of some sort of brute force attack that could take a lifetime to complete, I know of no means to bypass bitlocker.

While, technically, any means of encryption can be defeated, the feasibility of doing so is minimal at best.

From a user's perspective, I see no practical risk to securing their data with bitlocker (unless they forget their password and lose their recovery key at which point the data is ultimately secure and effectively gone from existence).



Huh? As soon as you "pop out the RAM", there is nothing to read.

You are correct about access to a powered on system. If you leave a logged into rig unsecure, all of your data is at risk.




I vaguely remember that now. AS I recall, it took some fairly constrained conditions to allow it to work. Given modern memory and the low voltages (relatively) being used, I suspect this is even harder to do now.

This is an excellent discussion, BTW.
m
0
l
a b * Windows 8
October 16, 2014 1:54:43 PM

good point
m
0
l
a b * Windows 8
October 16, 2014 4:56:15 PM

What is your source for the above statement? I would like to see in its entire form.

Not to start an off-topic argument, but the NSA showing up on your doorstep doesn't necessarily mean anyone gives them the keys to the kingdom, so to speak.
m
0
l
!