bitlocker : (

[Gunna]

Hi all, read the following negative about bitlocker. Can anyone confirm
these and even point me towards an official MS document confirming these

1. non-Microsoft software updates will require you to completely disable
BitLocker before you start
2. System upgrades will require you to decrypt the volume
3. Only volume containing OS and system files will be encrypted. Other
volumes are nto encrypted by bitlocker but can be encrypted using EFS.

Will there be any support for bitlocker using certificates issued by Active
Directory enabled PKI services? (microsoft certificate services)

 

[benedito78]

1. I don't see why any software would require disabling bitlocker, there is
no reason to do so.

2. Have not heard of this either nor would there be reason to do so.

3. You can encrypt your system volume partition, you can also encrypt other
volumes but this is not yet supported by Microsoft, meaning if it doesn't
work out well, it doesn't work out well. Service Pack 1 should allow you to
encrypt multiple volumes. Until then you can try www.truecrypt.org

-Lou

 

[Gary Mount]

1. BitLocker is transparent to any programs. For example you don't have to
convert your NTFS formatted hard drive to fat32 to upgrade software.

2. What do you mean by "System upgrades". Ultimate is the Highest version
and the only version with BitLocker, so there is no Upgrading that can be
done.

3. You can use BitLocker on any drive. There is no GUI for encrypting
volumes other than the volume containing the OS. You use a command line
utility to encrypt other volumes, so I read. I use the graphical interface
included with the SP1 beta.
Service Pack 1 adds the Graphical Interface to easily encrypt other volumes.

 

[Paul Adare]

2. What do you mean by "System upgrades". Ultimate is the Highest version
and the only version with BitLocker, so there is no Upgrading that can be
done.

Bitlocker is also available in Vista Enterprise Edition.

 

[Kevin Young]

Hi all, read the following negative about bitlocker. Can anyone confirm
these and even point me towards an official MS document confirming these

1. non-Microsoft software updates will require you to completely disable
BitLocker before you start
2. System upgrades will require you to decrypt the volume
3. Only volume containing OS and system files will be encrypted. Other
volumes are nto encrypted by bitlocker but can be encrypted using EFS.

Will there be any support for bitlocker using certificates issued by Active
Directory enabled PKI services? (microsoft certificate services)

I've had to disable Bitlocker when flashing the bios on a Lenovo T60p.
Machine has a TPM so that may have something to do with it though.

 

[Kos]

Anyone knows how much performance speed hit on a typical installation.

 

[Gary Mount]

With or without a TPM ?

 

[Kos]

With or without a TPM ?

Without. Just wondering if I should just get an hardware encrypted hd
instead if theres much performance hit.

 

[Peter]

Without. Just wondering if I should just get an hardware encrypted hd
instead if theres much performance hit.

No performance hit at all here.