Edge Show 102 - BitLocker: Preauth, PINS, UEFI and protections

Sign in to queue

Description

In this episode Simon May interviews Chris Hallum from the Windows team about BitLocker pre-boot PIN in Windows 8.1 and they answer the question of why you probably don't need a pre-boot PIN any longer. BitLocker in Windows 8.1 and also potentially in Windows 7 when running on modern UEFI enabled hardware no longer need a pre-boot PIN because of enhancements in UEFI and also other components of Windows that make it harder for some common attack vectors to succeed.

Here's how the episode breaks down for those time skippers:

[08:26] : Interview

[09:08] : Device Encryption vs BitLocker

[12:23] : Protecting Devices with Pre-Boot Auth

[13:46] : Why did we have pre-boot auth in the past?

[16:50] : Downsides to Pre-Boot Auth

[17:41] : Protecting Devices with Pre-Boot Auth

[18:15] : Mitigating DMA Port attacks

[23:44] Mitigating Memory Remanence Attacks

Finally here is the whitepaper that Chris and Simon mention.

Also we have this weeks news including:

Connect with the Edge Team:





Facebook - Email

Embed

Download

The Discussion

  • User profile image
    Alexander

    interesting

  • User profile image
    MotherMerlin

    BooksArePretty! Security is decidedly the topic of the day so I have been boning up on the subject for this past week. I decided BitLocker would fit the bill, except I don't think I have a TPM.

      Watching this show has made me realize its still doable. I have a 64bit machine running Windows 8.1 so this will just be lovely. Thank you.

      Recently my laptop has been becoming unresponsive so I've been opening TaskManager, expanding the offending host and bumping off processes until the CPU % comes back in line. Now when I looked into my event viewer it Informed me that "Skype" had shut down and I had not been running it! 

      On a side note, 3 days ago my roomie received an e-mail that claimed to have a bitchen update for "Angry Birds" that could be downloaded from "SpyPhone.com\whatEver"! Okay...

Add Your 2 Cents