this post was submitted on 14 Aug 2024
300 points (97.5% liked)

Technology

59174 readers
3700 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
300
Microsoft is enabling BitLocker device encryption by default on Windows 11 (www.theverge.com)
submitted 2 months ago by [email protected] to c/[email protected]
121 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 2 months ago (4 children)

yeah, no kidding, a real bitch if you want to back up your systems, and the hit to processing speed is significant, though with it enabled, the days of popping out a hard drive, and grabbing whatever the hell's on there with a usb connection are over

[–] [email protected] 12 points 2 months ago (2 children)

AES-NI has been standard for over a decade. There shouldn't be a significant hit to processing speed.

[–] [email protected] 2 points 2 months ago (1 children)

and i work with dozens of disparate windows systems on multiple hardware platforms on the regular, the speed degradation with bitlocker encryption still exists, and is noticeable

[–] [email protected] 5 points 2 months ago (1 children)

You've benchmarked this? Using what encryption algorithm, what processors, what benchmark?

[–] [email protected] 8 points 2 months ago

More to the point, I think, is are there even any systems that will run Windows 11 that don't have AES-NI?

Performance without it is kinda irrelevant because there's no situation where you'd have Windows 11 and bitlocker and NOT AES-NI.

[–] [email protected] 9 points 2 months ago (2 children)

the days of popping out a hard drive, and grabbing whatever the hell’s on there with a usb connection are over

Independent repair shops are going to suffer big time from this.

[–] [email protected] 7 points 2 months ago (1 children)

well, if the customer provides them the bitlocker key, then they can access and manipulate the data on the drive, if not, they're fucked

[–] [email protected] 15 points 2 months ago (1 children)

I've supported bitlocker in corporate deployments. I have also spent some time in independent repair shops. I have little confidence in users to supply a bitlocker key, let alone even know what one is. I anticipate a lot of "what? I already gave you my password."

[–] [email protected] 4 points 2 months ago

lol yes

[–] [email protected] 5 points 2 months ago* (last edited 2 months ago)

Obviously, Microsoft will happily sell you one drive cloud backup to solve the problem they are creating.

[–] [email protected] 3 points 2 months ago

You can still mount it to another machine if you have the key. It's an extra layer of pain in the ass, though.

I don't use an M$ account so if your key is backed up to the cloud (aside: can't wait to read the headline about when that gets breached) I don't personally know offhand how difficult it is to extricate your BitLocker keys from Microsoft.

[–] [email protected] 1 points 2 months ago

Source?