Results 1 to 11 of 11

Thread: Microsoft stops trusting SSD maker hardware encryption

  1. #1
    HEXUS.admin
    Join Date
    Apr 2005
    Posts
    31,709
    Thanks
    0
    Thanked
    2,073 times in 719 posts

    Microsoft stops trusting SSD maker hardware encryption

    Makes software encryption the default for newly encrypted drives.
    Read more.

  2. #2
    I'm special azrael-'s Avatar
    Join Date
    Jan 2014
    Location
    Aarhus, Denmark
    Posts
    1,074
    Thanks
    67
    Thanked
    113 times in 92 posts
    • azrael-'s system
      • Motherboard:
      • ASUS Prime X470-Pro
      • CPU:
      • AMD Ryzen 7 3800X
      • Memory:
      • 64 GB ECC DDR4 2666 MHz (Samsung M391A2K43BB1-CTD)
      • Storage:
      • 1 TB Samsung 970 EVO Plus, 1 TB Samsung 850 EVO, 12 TB WD HDDs
      • Graphics card(s):
      • eVGA GTX 1080 SC Gaming, 8 GB
      • PSU:
      • Seasonic X-Series 560W
      • Case:
      • Corsair Obsidian 550D
      • Operating System:
      • Windows 10 Pro x64
      • Monitor(s):
      • Acer Predator XB271HU
      • Internet:
      • VDSL 55/12 Mbit/s

    Re: Microsoft stops trusting SSD maker hardware encryption

    Because Microsoft has such a stellar record when it comes to bug-free code...

  3. #3
    Senior Member
    Join Date
    May 2014
    Posts
    2,385
    Thanks
    181
    Thanked
    304 times in 221 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by azrael- View Post
    Because Microsoft has such a stellar record when it comes to bug-free code...
    That doesn't exonerate the SSD manufacturers.

    Because one doesn't have a stellar record doesn't excuse the issues found in others.

  4. #4
    Be wary of Scan Dashers's Avatar
    Join Date
    Jun 2016
    Posts
    1,079
    Thanks
    40
    Thanked
    137 times in 107 posts
    • Dashers's system
      • Motherboard:
      • Gigabyte GA-X99-UD4
      • CPU:
      • Intel i7-5930K
      • Memory:
      • 48GB Corsair DDR4 3000 Quad-channel
      • Storage:
      • Intel 750 PCIe SSD; RAID-0 x2 Samsung 840 EVO; RAID-0 x2 WD Black; RAID-0 x2 Crucial MX500
      • Graphics card(s):
      • MSI GeForce GTX 1070 Ti
      • PSU:
      • CoolerMaster Silent Pro M2 720W
      • Case:
      • Corsair 500R
      • Operating System:
      • Windows 10
      • Monitor(s):
      • Philips 40" 4K AMVA + 23.8" AOC 144Hz IPS
      • Internet:
      • Zen FTTC

    Re: Microsoft stops trusting SSD maker hardware encryption

    Fantastic straw-man argument there azrael.

    It's a great shame the people tasked with implementing security have such a poor understanding with the fundamentals (such as not using a generic password for everybody).

  5. #5
    Senior Member
    Join Date
    Apr 2016
    Location
    UK
    Posts
    227
    Thanks
    70
    Thanked
    34 times in 22 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    More importantly - should we trust any closed & proprietary security platform that has no credible, comprehensive and continuous independent security auditing, regardless of manufacturer?

  6. Received thanks from:

    azrael- (01-10-2019),Tabbykatze (30-09-2019)

  7. #6
    I'm special azrael-'s Avatar
    Join Date
    Jan 2014
    Location
    Aarhus, Denmark
    Posts
    1,074
    Thanks
    67
    Thanked
    113 times in 92 posts
    • azrael-'s system
      • Motherboard:
      • ASUS Prime X470-Pro
      • CPU:
      • AMD Ryzen 7 3800X
      • Memory:
      • 64 GB ECC DDR4 2666 MHz (Samsung M391A2K43BB1-CTD)
      • Storage:
      • 1 TB Samsung 970 EVO Plus, 1 TB Samsung 850 EVO, 12 TB WD HDDs
      • Graphics card(s):
      • eVGA GTX 1080 SC Gaming, 8 GB
      • PSU:
      • Seasonic X-Series 560W
      • Case:
      • Corsair Obsidian 550D
      • Operating System:
      • Windows 10 Pro x64
      • Monitor(s):
      • Acer Predator XB271HU
      • Internet:
      • VDSL 55/12 Mbit/s

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by Tabbykatze View Post
    That doesn't exonerate the SSD manufacturers.

    Because one doesn't have a stellar record doesn't excuse the issues found in others.
    I quite agree with you on this. It's just with all the bungled updates, bugs and what not courtesy of Microsoft they probably shouldn't pretend to know better. I orginally intended to state "Pot, meet Kettle". Perhaps I should have.

    Quote Originally Posted by Dashers View Post
    Fantastic straw-man argument there azrael.

    It's a great shame the people tasked with implementing security have such a poor understanding with the fundamentals (such as not using a generic password for everybody).
    Not quite sure what you mean with "straw-man argument". I'm not defending manufacturers of SSDs. I just believe Microsoft should take care of their own flaws before pointing the finger.

    Quote Originally Posted by chinf View Post
    More importantly - should we trust any closed & proprietary security platform that has no credible, comprehensive and continuous independent security auditing, regardless of manufacturer?
    Very well said, tbh.

  8. #7
    Senior Member
    Join Date
    May 2014
    Posts
    2,385
    Thanks
    181
    Thanked
    304 times in 221 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by azrael- View Post
    I quite agree with you on this. It's just with all the bungled updates, bugs and what not courtesy of Microsoft they probably shouldn't pretend to know better. I orginally intended to state "Pot, meet Kettle". Perhaps I should have.
    There's a big difference between bugs in millions of lines of code and secure enclave having a bug that allows you to reset all the encryption keys on a drive giving you full access to the encrypted contents.

  9. #8
    bios curious
    Join Date
    Mar 2013
    Location
    Lancashire
    Posts
    333
    Thanks
    206
    Thanked
    46 times in 38 posts
    • Mr_Jon's system
      • Motherboard:
      • ASRock AB350 Pro4
      • CPU:
      • Ryzen 3800x
      • Memory:
      • 48GB
      • Storage:
      • Samsung 970 EVO NVME
      • Graphics card(s):
      • 6750XT
      • PSU:
      • EVGA SuperNOVA 650 G2
      • Case:
      • Fractal Design Define XL R2
      • Operating System:
      • Windows 11 Pro
      • Monitor(s):
      • Samsung C32JG50 WQHD @ 144hz

    Re: Microsoft stops trusting SSD maker hardware encryption

    So...if one has a drive that they have deemed untrustworthy, does bitlocker need turning off and on again to benefit from the update?

  10. #9
    I'm special azrael-'s Avatar
    Join Date
    Jan 2014
    Location
    Aarhus, Denmark
    Posts
    1,074
    Thanks
    67
    Thanked
    113 times in 92 posts
    • azrael-'s system
      • Motherboard:
      • ASUS Prime X470-Pro
      • CPU:
      • AMD Ryzen 7 3800X
      • Memory:
      • 64 GB ECC DDR4 2666 MHz (Samsung M391A2K43BB1-CTD)
      • Storage:
      • 1 TB Samsung 970 EVO Plus, 1 TB Samsung 850 EVO, 12 TB WD HDDs
      • Graphics card(s):
      • eVGA GTX 1080 SC Gaming, 8 GB
      • PSU:
      • Seasonic X-Series 560W
      • Case:
      • Corsair Obsidian 550D
      • Operating System:
      • Windows 10 Pro x64
      • Monitor(s):
      • Acer Predator XB271HU
      • Internet:
      • VDSL 55/12 Mbit/s

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by Tabbykatze View Post
    There's a big difference between bugs in millions of lines of code and secure enclave having a bug that allows you to reset all the encryption keys on a drive giving you full access to the encrypted contents.
    Not really. I'm saying this as a developer ...fighting bugs on a daily basis. A bug is a bug.

    TBH, if I really wanted software encryption I'd probably use VeraCrypt. At least that *is* open source and independently audited.

  11. #10
    Senior Member
    Join Date
    May 2014
    Posts
    2,385
    Thanks
    181
    Thanked
    304 times in 221 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by azrael- View Post
    Not really. I'm saying this as a developer ...fighting bugs on a daily basis. A bug is a bug.

    TBH, if I really wanted software encryption I'd probably use VeraCrypt. At least that *is* open source and independently audited.
    Bitlocker is independently audited and is trusted as an industry standard for Windows products, just as FileVault 2 is for Mac.

    Just because it's "Open Source" does not make it better or even more trustworthy, look at OpenSSL and Heartbleed.

    As a developer, then you should know the difference between a bug causing an issue and an egregious design flaw resulting in security being classified as "null".

  12. #11
    Registered User
    Join Date
    Dec 2019
    Posts
    3
    Thanks
    0
    Thanked
    0 times in 0 posts

    Re: Microsoft stops trusting SSD maker hardware encryption

    Quote Originally Posted by Tabbykatze View Post
    Bitlocker is independently audited and is trusted as an industry standard for Windows products, just as FileVault 2 is for Mac.

    Just because it's "Open Source" does not make it better or even more trustworthy, look at OpenSSL and Heartbleed.

    As a developer, then you should know the difference between a bug causing an issue and an egregious design flaw resulting in security being classified as "null".
    I've never tried mentioned software. As it is free and included as a feature on Windows it doesn't seem like the best option. I think that it's better to try some third part solutions for higher security. For example, Nordlocker is a great tool to help with this matter.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •