Geeks for your information News Microsoft Windows News v
Microsoft Stops Trusting SSD Makers
Microsoft Stops Trusting SSD Makers
harlan4096 Online
MalWare Zoo Team
*******
Posts: 15,009
Threads: 9,770
Thanks Received: 9,134 in 7,286 posts
Thanks Given: 9,988
Joined: 12 September 18
#1
Information  30 September 19, 08:29
Quote:
[Image: aHR0cDovL21lZGlhLmJlc3RvZm1pY3JvLmNvbS9a...M2LmpwZw==]

Windows ships with a full volume encryption tool called BitLocker. The feature used to trust any SSD that claimed to offer its own hardware-based encryption, but that changed in the KB4516071 update to Windows 10 released on September 24, which now assumes that connected SSDs don't actually encrypt anything.

"SwiftOnSecurity" called attention to this change on September 26. The pseudonymous Twitter user then reminded everyone of a November 2018 report that revealed security flaws, such as the use of master passwords set by manufacturers, of self-encrypting drives. That meant people who purchased SSDs that were supposed to help keep their data secure might as well have purchased a drive that didn't handle its own encryption instead.

Those people were actually worse off than anticipated because Microsoft set up BitLocker to leave these self-encrypting drives to their own devices. This was supposed to help with performance--the drives could use their own hardware to encrypt their contents rather than using the CPU--without compromising the drive's security. Now it seems the company will no longer trust SSD manufacturers to keep their customers safe by themselves.

Here's the exact update Microsoft said it made in KB4516071: "Changes the default setting for BitLocker when encrypting a self-encrypting hard drive. Now, the default is to use software encryption for newly encrypted drives. For existing drives, the type of encryption will not change." People can also choose not to have BitLocker encrypt these drives, too, but the default setting assumes they don't want to take SSD manufacturers at their word.

We assume many people would prefer that self-encrypting drives would be as secure as they claim to having Microsoft update BitLocker. But at least now they won't be lulled into a false sense of security. If the drives work as advertised, BitLocker can be told to skip them when it's encrypting data. If they don't, however, at least Windows can now provide them a safety net rather than letting them fall because SSD companies messed up.
...
Continue Reading
[-] The following 2 users say Thank You to harlan4096 for this post:
  • dhruv2193, silversurfer
Find
Reply


Messages In This Thread
Microsoft Stops Trusting SSD Makers - by harlan4096 - 30 September 19, 08:29

Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
Linux Mint 22.2
Linux Mint 22.2: ...harlan4096 — 07:36
Manjaro Linux 25.0.8 Build 250902
 Manjaro Linux 25....harlan4096 — 07:28
Taking the biscuit: why hackers like coo...
We explain how cyb...harlan4096 — 07:27
PowerToys 0.94
Release v0.94 H...harlan4096 — 07:25
Adguard for Windows v7.21.3
Adguard for Window...harlan4096 — 07:23

[-]
Birthdays
Today's Birthdays
avatar (39)Margieweimi
avatar (39)Larondabet
avatar ()tradedeer1
Upcoming Birthdays
avatar (38)fapedDow
avatar (48)pohudidere
avatar (40)obudyg
avatar (48)rarinsWax
avatar (25)DianaBrown
avatar (35)emyzowa
avatar (46)JustinPrede
avatar (38)eqiduseb
avatar (44)fedosmiday
avatar (41)brechTiz
avatar (47)schedZoorb
avatar (41)bgreorasjunior4824
avatar (45)ThomasLYDAY
avatar (40)upakoExapy
avatar (50)diplomasync
avatar (49)Myronjax
avatar (49)skepwHug
avatar (38)RicardoGoase
avatar (41)JaniceArods
avatar (42)Brianven
avatar (31)I3rYcE
avatar (42)Edwardgef
avatar (43)Denpokhew
avatar (35)azidony
avatar (40)maskbSleew

[-]
Online Staff
harlan4096's profile harlan4096
Administrator

>