Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Do we have official - of any date - proof that BitLocker has a backdoor?
Message
<blockquote data-quote="Studynxx" data-source="post: 1097765" data-attributes="member: 98674"><p>Companies are "forced" to, tho. Yes, they are. They have to have some form of drive encryption, and since the vast majority of workstations (company laptops) run on Windows Pro or Enterprise, BitLocker is the go-to FVE method. Companies just find it way too easy to implement it and enforce it: MDT has it available as an option, or you can use Intune along with AAD and then enforce it with a standard PIN that way, that a user will then be prompted to change upon next logon. Or BitLocker enforcement also happens to be a Windows Server role. Way too easy for them not to do it, plus if they don't, they will lose their cyber insurance. I know this sounds weird but "go look it up" if you don't believe this. I used to be a sysadmin for DT then Vodafone, which doesn't say or mean much, but we always enforced it.</p><p></p><p></p><p>Some thing I'm good at, some things I suck at, it's a learning process so it takes time to get good at most things. I don't know what else to say, one thing I'm not is a cybersec professional.</p><p></p><p></p><p>Zero Trust. Ideally nobody should have access to my data other than me. Which is why I asked the OP question(s) and still do. Either BL has a backdoor and I'll start using Veracrypt, or it doesn't and I'll keep using BL. Or... I'll use cryptomator + VeraCrypt + BL. Zero Trust is all that matters to me, complete privacy regarding even youtube for instance, anything really. </p><p>BitLocker is my go-to tho as it's incredibly easy to script the entire process via Powershell and then inject the script into your system image which is what I did.</p></blockquote><p></p>
[QUOTE="Studynxx, post: 1097765, member: 98674"] Companies are "forced" to, tho. Yes, they are. They have to have some form of drive encryption, and since the vast majority of workstations (company laptops) run on Windows Pro or Enterprise, BitLocker is the go-to FVE method. Companies just find it way too easy to implement it and enforce it: MDT has it available as an option, or you can use Intune along with AAD and then enforce it with a standard PIN that way, that a user will then be prompted to change upon next logon. Or BitLocker enforcement also happens to be a Windows Server role. Way too easy for them not to do it, plus if they don't, they will lose their cyber insurance. I know this sounds weird but "go look it up" if you don't believe this. I used to be a sysadmin for DT then Vodafone, which doesn't say or mean much, but we always enforced it. Some thing I'm good at, some things I suck at, it's a learning process so it takes time to get good at most things. I don't know what else to say, one thing I'm not is a cybersec professional. Zero Trust. Ideally nobody should have access to my data other than me. Which is why I asked the OP question(s) and still do. Either BL has a backdoor and I'll start using Veracrypt, or it doesn't and I'll keep using BL. Or... I'll use cryptomator + VeraCrypt + BL. Zero Trust is all that matters to me, complete privacy regarding even youtube for instance, anything really. BitLocker is my go-to tho as it's incredibly easy to script the entire process via Powershell and then inject the script into your system image which is what I did. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
