{"id":8822,"date":"2015-06-05T05:26:10","date_gmt":"2015-06-05T10:26:10","guid":{"rendered":"http:\/\/olduvai.ca\/?p=8822"},"modified":"2015-06-05T05:26:10","modified_gmt":"2015-06-05T10:26:10","slug":"microsoft-gives-details-about-its-controversial-disk-encryption","status":"publish","type":"post","link":"https:\/\/olduvai.ca\/?p=8822","title":{"rendered":"Microsoft Gives Details About Its Controversial Disk Encryption"},"content":{"rendered":"<div class=\"hero\">\n<h3 class=\"title\"><a href=\"https:\/\/firstlook.org\/theintercept\/2015\/06\/04\/microsoft-disk-encryption\/\" target=\"_blank\">Microsoft Gives Details About Its Controversial Disk Encryption<\/a><\/h3>\n<p><img decoding=\"async\" src=\"https:\/\/prod01-cdn01.cdn.firstlook.org\/wp-uploads\/sites\/1\/2015\/06\/462699514-article-display-b.jpg\" alt=\"Featured photo - Microsoft Gives Details About Its Controversial Disk Encryption\" \/><\/div>\n<div class=\"ti-body\">\n<p>Recently, I wrote a guide\u00a0<a href=\"https:\/\/firstlook.org\/theintercept\/2015\/04\/27\/encrypting-laptop-like-mean\/\">explaining how to encrypt your laptop\u2019s<\/a>\u00a0hard drive and why you should do so. For the benefit of Windows users, I gave instructions for turning on BitLocker, Microsoft\u2019s disk encryption technology.<\/p>\n<p>This advice generated an immediate backlash in the comments section underneath the post, where readers correctly pointed out that BitLocker has been criticized by security experts for a number of real and potential shortcomings. For example, BitLocker\u2019s source code is not available for inspection, which makes it particularly vulnerable to \u201cbackdoors,\u201d security holes intentionally placed to provide access to the government or others. In addition, BitLocker\u2019s host operating system, Microsoft Windows, provides an algorithm for generating random numbers, including encryption keys, that is known to have been backdoored by government spies, and which the company\u2019s own engineers flagged as potentially compromised nearly eight years ago. BitLocker also lost a key component for hardening its encryption, known as the \u201cElephant diffuser,\u201d in the latest major version of Windows. And Microsoft has reportedly worked hand-in-glove with the government to provide early access to bugs in Windows and to customer data in its Skype and Outlook.com products.<\/p>\n<p>Even having known about these issues, I still believed BitLocker was the best of several bad options for Windows users; I\u2019ll explain my reasoning on this later.<\/p>\n<p>But in the meantime, something interesting has happened: Microsoft, after considerable prodding, provided me with answers to some longstanding questions about BitLocker\u2019s security. The company told me which random number generator BitLocker uses to generate encryption keys, alleviating concerns about a government backdoor in that subsystem; it explained why it removed the Elephant diffuser, citing worries over performance and compatibility that will appease some, but certainly not all, concerned parties; and it said that the government-compromised algorithm it bundles with Windows to generate encryption keys is, by default, not used at all.<\/p>\n<p>&#8230;click on the above link to read the rest of the article&#8230;<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft Gives Details About Its Controversial Disk Encryption Recently, I wrote a guide\u00a0explaining how to encrypt your laptop\u2019s\u00a0hard drive and why you should do so. For the benefit of Windows users, I gave instructions for turning on BitLocker, Microsoft\u2019s disk encryption technology. This advice generated an immediate backlash in the comments section underneath the post, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[6],"tags":[6103,6101,5015,261,6100,6104,765,6102],"class_list":["post-8822","post","type-post","status-publish","format-standard","hentry","category-liberty","tag-backdoor","tag-bitlocker","tag-disk-encryption","tag-encryption","tag-microsoft","tag-microsoft-windows","tag-surveillance","tag-windows"],"_links":{"self":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/8822","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=8822"}],"version-history":[{"count":1,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/8822\/revisions"}],"predecessor-version":[{"id":8823,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/8822\/revisions\/8823"}],"wp:attachment":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=8822"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=8822"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=8822"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}