Entries:
Comments:
Posts:

Loading User Information from Channel 9

Something went wrong getting user information from Channel 9

Latest Achievement:

Loading User Information from MSDN

Something went wrong getting user information from MSDN

Visual Studio Achievements

Latest Achievement:

Loading Visual Studio Achievements

Something went wrong getting the Visual Studio Achievements

Edge Show 102 - BitLocker: Preauth, PINS, UEFI and protections

Download

Right click “Save as…”

  • MP3 (Audio only)
  • MP4 (iPhone, Android)
  • High Quality MP4 (iPad, PC, Xbox)
  • Mid Quality MP4 (Windows Phone, HTML5, iPhone)

In this episode Simon May interviews Chris Hallum from the Windows team about BitLocker pre-boot PIN in Windows 8.1 and they answer the question of why you probably don't need a pre-boot PIN any longer. BitLocker in Windows 8.1 and also potentially in Windows 7 when running on modern UEFI enabled hardware no longer need a pre-boot PIN because of enhancements in UEFI and also other components of Windows that make it harder for some common attack vectors to succeed.

Here's how the episode breaks down for those time skippers:

[08:26] : Interview

[09:08] : Device Encryption vs BitLocker

[12:23] : Protecting Devices with Pre-Boot Auth

[13:46] : Why did we have pre-boot auth in the past?

[16:50] : Downsides to Pre-Boot Auth

[17:41] : Protecting Devices with Pre-Boot Auth

[18:15] : Mitigating DMA Port attacks

[23:44] Mitigating Memory Remanence Attacks

Finally here is the whitepaper that Chris and Simon mention.

Also we have this weeks news including:

Connect with the Edge Team:





Facebook - Email

Tags:

Follow the Discussion

  • AlexanderAlexander

    interesting

  • BooksArePretty! Security is decidedly the topic of the day so I have been boning up on the subject for this past week. I decided BitLocker would fit the bill, except I don't think I have a TPM.

      Watching this show has made me realize its still doable. I have a 64bit machine running Windows 8.1 so this will just be lovely. Thank you.

      Recently my laptop has been becoming unresponsive so I've been opening TaskManager, expanding the offending host and bumping off processes until the CPU % comes back in line. Now when I looked into my event viewer it Informed me that "Skype" had shut down and I had not been running it! 

      On a side note, 3 days ago my roomie received an e-mail that claimed to have a bitchen update for "Angry Birds" that could be downloaded from "SpyPhone.com\whatEver"! Okay...

Remove this comment

Remove this thread

close

Comment on the Post

Already have a Channel 9 account? Please sign in