cybersecurity

5460 readers

32 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub

Microsoft Gave FBI BitLocker Encryption Keys, Exposing Privacy Flaw (www.forbes.com)

submitted 1 day ago by floofloof@lemmy.ca to c/cybersecurity@infosec.pub

2 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Kissaki@programming.dev 3 points 21 hours ago

It’s possible for users to store those keys on a device they own, but Microsoft also recommends BitLocker users store their keys on its servers for convenience.

Pretty obvious that if you hand over the (recovery) keys that they'd follow court orders.

Of course, the criticism about defaults is warranted. At the same time, even outside of control concerns, it's fairly obvious why Microsoft would choose user convenience and ability to recover data over loss of data.

It should be a well informed choice that makes the risks clear when setting it up.