BitLocker Drive Encryption

BitLocker Drive Encryption is a new Windows Vista and Windows 7 feature that improves data integrity and confidentiality by encrypting entire volumes. Windows Vista must have Service Pack 1 (SP1) installed to encrypted non-system volumes. BitLocker can use Trusted Platform Module (TPM) security hardware to wrap and seal the keys used to encrypt the system volume, helping to protect the volumes from offline attacks. Alternatively, BitLocker can use a USB flash drive to store the startup key used to encrypt the volumes. BitLocker is available in the Enterprise and Ultimate Editions of Windows 7.

BitLocker should be used with a TPM when used to encrypt the system volume. A TPM is a hardware module embedded in the motherboards ...

Get Windows® 7 Resource Kit now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.