Which is best on FDE SSD - enabled or disabled TRIM?
Got an Intel gen2 SSD 160GB. I want to do full disk encryption (FDE) on Windows 7 64-bit. Based on my readings, using TRIM on FDE drive will allow attackers the ability to be able to identify unused portions of the disk/partition, which opens the door to some theoretical attack possibilities. Plus there is the possibility of data leaks (e.g., the type of partition being used).
I don't really care if an attacker can identify what parts of the disk are used/unused. But I don't want sensitive data being leaked to the disk unencrypted.
1.) Is there still reliable security for FDE with TRIM enabled or is the possibility of these data leaks serious enough that FDE should not even be considered with TRIM use?
2.) if TRIM is disabled on a gen2 Intel, will performance and drive reliability become a significant issue?