From https://twitter.com/matthew_d_green/status/525725376782557184: From https://twitter.com/justintroutman/status/525397558299213824: From "Bitlocker: A little about the internals and what changed in Windows 8" (hxxp://spi.unob.cz/presentations/23-May/07-Rosendorf%20The%C2%A0BitLocker%C2%A0Schema.pdf): Speculation or fact? From http://mywindows8.org/choose-bitlocker-drive-encryption-method-and-cipher-strength-in-windows-8-1/:
I don't get this - if W7 has default 128 bit AES and Diffuser, then I'd presume that that was OK for FIPS. Removal of it as an option in W8 makes no sense other than the suspicious kind. Which only leaves bumping it up to 256 bit through GP. I only rely on Bitlocker for standard theft stuff. Personally, I'd much prefer hardware accelerated cryptography to be done on the GPU. I'm not that comfortable with special purpose chips doing this as they become intrinsically non-verifiable, whereas GPUs would seem to have the necessary parallelism, standardised general purpose API, and integer/logic operations that you'd likely want. Obviously used in cryptocurrency mining, but AES doesn't seem to be widespread that way.
MS Bitlocker device encryption automatically uploads recovery keys to SkyDrive. http://cryptome.org/2014/11/ms-onedrive-nsa-prism.htm
BitLocker now supports the XTS-AES encryption algorithm. https://technet.microsoft.com/en-us/library/mt403325.aspx?f=255&MSPPError=-2147217396