Has BitLocker been weakened in Windows 8?

Discussion in 'privacy technology' started by MrBrian, Nov 1, 2014.

  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From https://twitter.com/matthew_d_green/status/525725376782557184:
    From https://twitter.com/justintroutman/status/525397558299213824:
    From "Bitlocker: A little about the internals and what changed in Windows 8" (hxxp://spi.unob.cz/presentations/23-May/07-Rosendorf%20The%C2%A0BitLocker%C2%A0Schema.pdf):
    Speculation or fact? From http://mywindows8.org/choose-bitlocker-drive-encryption-method-and-cipher-strength-in-windows-8-1/:
     
  2. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  3. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From the paper at http://www.microsoft.com/en-us/download/details.aspx?id=13866:
     
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From How Strong Do You Want the BitLocker Protection?:
     
  5. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  6. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From thread Diffuser missing from BitLocker Drive Encryption:
     
  7. deBoetie

    deBoetie Registered Member

    Joined:
    Aug 7, 2013
    Posts:
    1,147
    Location:
    UK
    I don't get this - if W7 has default 128 bit AES and Diffuser, then I'd presume that that was OK for FIPS. Removal of it as an option in W8 makes no sense other than the suspicious kind. Which only leaves bumping it up to 256 bit through GP.

    I only rely on Bitlocker for standard theft stuff.

    Personally, I'd much prefer hardware accelerated cryptography to be done on the GPU. I'm not that comfortable with special purpose chips doing this as they become intrinsically non-verifiable, whereas GPUs would seem to have the necessary parallelism, standardised general purpose API, and integer/logic operations that you'd likely want. Obviously used in cryptocurrency mining, but AES doesn't seem to be widespread that way.
     
  8. dogbite

    dogbite Registered Member

    Joined:
    Dec 13, 2012
    Posts:
    1,166
    Location:
    EU
  9. deBoetie

    deBoetie Registered Member

    Joined:
    Aug 7, 2013
    Posts:
    1,147
    Location:
    UK
  10. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  11. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From Code Execution In Spite Of BitLocker:
     
  12. Lagaa

    Lagaa Registered Member

    Joined:
    Dec 30, 2014
    Posts:
    5
Loading...