Loading user information from Channel 9

Something went wrong getting user information from Channel 9

Latest Achievement:

Loading user information from MSDN

Something went wrong getting user information from MSDN

Visual Studio Achievements

Latest Achievement:

Loading Visual Studio Achievements

Something went wrong getting the Visual Studio Achievements

Edge Show 102 - BitLocker: Preauth, PINS, UEFI and protections

34 minutes, 35 seconds


Right click “Save as…”

In this episode Simon May interviews Chris Hallum from the Windows team about BitLocker pre-boot PIN in Windows 8.1 and they answer the question of why you probably don't need a pre-boot PIN any longer. BitLocker in Windows 8.1 and also potentially in Windows 7 when running on modern UEFI enabled hardware no longer need a pre-boot PIN because of enhancements in UEFI and also other components of Windows that make it harder for some common attack vectors to succeed.

Here's how the episode breaks down for those time skippers:

[08:26] : Interview

[09:08] : Device Encryption vs BitLocker

[12:23] : Protecting Devices with Pre-Boot Auth

[13:46] : Why did we have pre-boot auth in the past?

[16:50] : Downsides to Pre-Boot Auth

[17:41] : Protecting Devices with Pre-Boot Auth

[18:15] : Mitigating DMA Port attacks

[23:44] Mitigating Memory Remanence Attacks

Finally here is the whitepaper that Chris and Simon mention.

Also we have this weeks news including:

Connect with the Edge Team:

Facebook - Email


Follow the discussion

  • Oops, something didn't work.

    Getting subscription
    Subscribe to this conversation
  • AlexanderAlexander


  • BooksArePretty! Security is decidedly the topic of the day so I have been boning up on the subject for this past week. I decided BitLocker would fit the bill, except I don't think I have a TPM.

      Watching this show has made me realize its still doable. I have a 64bit machine running Windows 8.1 so this will just be lovely. Thank you.

      Recently my laptop has been becoming unresponsive so I've been opening TaskManager, expanding the offending host and bumping off processes until the CPU % comes back in line. Now when I looked into my event viewer it Informed me that "Skype" had shut down and I had not been running it! 

      On a side note, 3 days ago my roomie received an e-mail that claimed to have a bitchen update for "Angry Birds" that could be downloaded from "SpyPhone.com\whatEver"! Okay...

Remove this comment

Remove this thread


Comments closed

Comments have been closed since this content was published more than 30 days ago, but if you'd like to continue the conversation, please create a new thread in our Forums, or Contact Us and let us know.