Results 1 to 11 of 11

Thread: Microsoft stops trusting SSD maker hardware encryption

  1. #1
    HEXUS.admin
    Join Date
    Apr 2005
    Posts
    30,274
    Thanks
    0
    Thanked
    1,941 times in 682 posts

    Microsoft stops trusting SSD maker hardware encryption

    Makes software encryption the default for newly encrypted drives.
    Read more.

  2. #2
    I'm special azrael-'s Avatar
    Join Date
    Jan 2014
    Location
    Aarhus, Denmark
    Posts
    1,044
    Thanks
    66
    Thanked
    107 times in 90 posts
    • azrael-'s system
      • Motherboard:
      • ASUS Prime X470-Pro
      • CPU:
      • AMD Ryzen 7 3800X
      • Memory:
      • 64 GB ECC DDR4 2666 MHz (Samsung M391A2K43BB1-CTD)
      • Storage:
      • 1 TB Samsung 970 EVO Plus, 1 TB Samsung 850 EVO, 12 TB WD HDDs
      • Graphics card(s):
      • eVGA GTX 1080 SC Gaming, 8 GB
      • PSU:
      • Seasonic X-Series 560W
      • Case:
      • Corsair Obsidian 550D
      • Operating System:
      • Windows 10 Pro x64
      • Monitor(s):
      • Acer Predator XB271HU
      • Internet:
      • VDSL 55/12 Mbit/s

    Re: Microsoft stops trusting SSD maker hardware encryption

    Because Microsoft has such a stellar record when it comes to bug-free code...

  3. #3
    Senior Member
    Join Date
    May 2014
    Posts
    1,756
    Thanks
    111
    Thanked
    234 times in 168 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by azrael- View Post
    Because Microsoft has such a stellar record when it comes to bug-free code...
    That doesn't exonerate the SSD manufacturers.

    Because one doesn't have a stellar record doesn't excuse the issues found in others.

  4. #4
    Be wary of Scan Dashers's Avatar
    Join Date
    Jun 2016
    Posts
    1,058
    Thanks
    38
    Thanked
    134 times in 106 posts
    • Dashers's system
      • Motherboard:
      • Gigabyte GA-X99-UD4
      • CPU:
      • Intel i7-5930K
      • Memory:
      • 48GB Corsair DDR4 3000 Quad-channel
      • Storage:
      • Intel 750 PCIe SSD; RAID-0 x2 Samsung 840 EVO; RAID-0 x2 WD Black; RAID-0 x2 Crucial MX500
      • Graphics card(s):
      • MSI GeForce GTX 1070 Ti
      • PSU:
      • CoolerMaster Silent Pro M2 720W
      • Case:
      • Corsair 500R
      • Operating System:
      • Windows 10
      • Monitor(s):
      • Philips 40" 4K AMVA + 23.8" AOC 144Hz IPS
      • Internet:
      • Zen FTTC

    Re: Microsoft stops trusting SSD maker hardware encryption

    Fantastic straw-man argument there azrael.

    It's a great shame the people tasked with implementing security have such a poor understanding with the fundamentals (such as not using a generic password for everybody).

  5. #5
    Senior Member
    Join Date
    Apr 2016
    Location
    UK
    Posts
    225
    Thanks
    65
    Thanked
    34 times in 22 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    More importantly - should we trust any closed & proprietary security platform that has no credible, comprehensive and continuous independent security auditing, regardless of manufacturer?

  6. Received thanks from:

    azrael- (01-10-2019),Tabbykatze (30-09-2019)

  7. #6
    I'm special azrael-'s Avatar
    Join Date
    Jan 2014
    Location
    Aarhus, Denmark
    Posts
    1,044
    Thanks
    66
    Thanked
    107 times in 90 posts
    • azrael-'s system
      • Motherboard:
      • ASUS Prime X470-Pro
      • CPU:
      • AMD Ryzen 7 3800X
      • Memory:
      • 64 GB ECC DDR4 2666 MHz (Samsung M391A2K43BB1-CTD)
      • Storage:
      • 1 TB Samsung 970 EVO Plus, 1 TB Samsung 850 EVO, 12 TB WD HDDs
      • Graphics card(s):
      • eVGA GTX 1080 SC Gaming, 8 GB
      • PSU:
      • Seasonic X-Series 560W
      • Case:
      • Corsair Obsidian 550D
      • Operating System:
      • Windows 10 Pro x64
      • Monitor(s):
      • Acer Predator XB271HU
      • Internet:
      • VDSL 55/12 Mbit/s

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by Tabbykatze View Post
    That doesn't exonerate the SSD manufacturers.

    Because one doesn't have a stellar record doesn't excuse the issues found in others.
    I quite agree with you on this. It's just with all the bungled updates, bugs and what not courtesy of Microsoft they probably shouldn't pretend to know better. I orginally intended to state "Pot, meet Kettle". Perhaps I should have.

    Quote Originally Posted by Dashers View Post
    Fantastic straw-man argument there azrael.

    It's a great shame the people tasked with implementing security have such a poor understanding with the fundamentals (such as not using a generic password for everybody).
    Not quite sure what you mean with "straw-man argument". I'm not defending manufacturers of SSDs. I just believe Microsoft should take care of their own flaws before pointing the finger.

    Quote Originally Posted by chinf View Post
    More importantly - should we trust any closed & proprietary security platform that has no credible, comprehensive and continuous independent security auditing, regardless of manufacturer?
    Very well said, tbh.

  8. #7
    Senior Member
    Join Date
    May 2014
    Posts
    1,756
    Thanks
    111
    Thanked
    234 times in 168 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by azrael- View Post
    I quite agree with you on this. It's just with all the bungled updates, bugs and what not courtesy of Microsoft they probably shouldn't pretend to know better. I orginally intended to state "Pot, meet Kettle". Perhaps I should have.
    There's a big difference between bugs in millions of lines of code and secure enclave having a bug that allows you to reset all the encryption keys on a drive giving you full access to the encrypted contents.

  9. #8
    bios curious
    Join Date
    Mar 2013
    Location
    Lancashire
    Posts
    320
    Thanks
    203
    Thanked
    41 times in 34 posts
    • Mr_Jon's system
      • Motherboard:
      • ASRock AB350 Pro4
      • CPU:
      • Ryzen 5 1600
      • Memory:
      • Ballistix Sport LT DDR4-2666, 24gb
      • Storage:
      • Samsung 970 EVO NVME
      • Graphics card(s):
      • Gigabyte GTX 1070 G1
      • PSU:
      • EVGA SuperNOVA 650 G2
      • Case:
      • Fractal Design Define XL R2
      • Operating System:
      • Windows 10 Pro
      • Monitor(s):
      • Samsung C32JG50 WQHD @ 144hz

    Re: Microsoft stops trusting SSD maker hardware encryption

    So...if one has a drive that they have deemed untrustworthy, does bitlocker need turning off and on again to benefit from the update?

  10. #9
    I'm special azrael-'s Avatar
    Join Date
    Jan 2014
    Location
    Aarhus, Denmark
    Posts
    1,044
    Thanks
    66
    Thanked
    107 times in 90 posts
    • azrael-'s system
      • Motherboard:
      • ASUS Prime X470-Pro
      • CPU:
      • AMD Ryzen 7 3800X
      • Memory:
      • 64 GB ECC DDR4 2666 MHz (Samsung M391A2K43BB1-CTD)
      • Storage:
      • 1 TB Samsung 970 EVO Plus, 1 TB Samsung 850 EVO, 12 TB WD HDDs
      • Graphics card(s):
      • eVGA GTX 1080 SC Gaming, 8 GB
      • PSU:
      • Seasonic X-Series 560W
      • Case:
      • Corsair Obsidian 550D
      • Operating System:
      • Windows 10 Pro x64
      • Monitor(s):
      • Acer Predator XB271HU
      • Internet:
      • VDSL 55/12 Mbit/s

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by Tabbykatze View Post
    There's a big difference between bugs in millions of lines of code and secure enclave having a bug that allows you to reset all the encryption keys on a drive giving you full access to the encrypted contents.
    Not really. I'm saying this as a developer ...fighting bugs on a daily basis. A bug is a bug.

    TBH, if I really wanted software encryption I'd probably use VeraCrypt. At least that *is* open source and independently audited.

  11. #10
    Senior Member
    Join Date
    May 2014
    Posts
    1,756
    Thanks
    111
    Thanked
    234 times in 168 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by azrael- View Post
    Not really. I'm saying this as a developer ...fighting bugs on a daily basis. A bug is a bug.

    TBH, if I really wanted software encryption I'd probably use VeraCrypt. At least that *is* open source and independently audited.
    Bitlocker is independently audited and is trusted as an industry standard for Windows products, just as FileVault 2 is for Mac.

    Just because it's "Open Source" does not make it better or even more trustworthy, look at OpenSSL and Heartbleed.

    As a developer, then you should know the difference between a bug causing an issue and an egregious design flaw resulting in security being classified as "null".

  12. #11
    Registered User
    Join Date
    Dec 2019
    Posts
    3
    Thanks
    0
    Thanked
    0 times in 0 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by Tabbykatze View Post
    Bitlocker is independently audited and is trusted as an industry standard for Windows products, just as FileVault 2 is for Mac.

    Just because it's "Open Source" does not make it better or even more trustworthy, look at OpenSSL and Heartbleed.

    As a developer, then you should know the difference between a bug causing an issue and an egregious design flaw resulting in security being classified as "null".
    I've never tried mentioned software. As it is free and included as a feature on Windows it doesn't seem like the best option. I think that it's better to try some third part solutions for higher security. For example, Nordlocker is a great tool to help with this matter.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •