On the disk encryption technology in Vista SP1

Previously mentioned, the Vista SP1 update package has improved BitLocker Drive encryption (BDE), providing TMP encryption support, including flash encryption and pins.

BitLocker can not only encrypt the entire system partition, but also support the encryption of the non-system partition, which can create the secret data partition locally. After a BitLocker Drive Encryption (BitLocker) partition, all the files stored on it are protected. And when we copy the new files to the partition, the files are automatically encrypted without us doing anything else.

If our machines are repaired or stolen, others hang their hard disks on other machines, and if BitLocker detects a security risk for a system condition (for example, disk errors, changes to the BIOS, or changes to any startup files) when the computer starts, BitLocker The drive is locked and requires a specific BitLocker recovery password to unlock, so no one can peek at our encrypted data.

Of course, we can turn it off temporarily by disabling BitLocker at any time, or permanently shut it down by decrypting the drive. The method is also simple, select "Start → control Panel →bitlocker Drive Encryption", click the "Turn off BitLocker" option, pop-up the BitLocker Drive Encryption dialog box, to decrypt the drive, click the Decrypt volume option to temporarily disable BitLocker , click Disable BitLocker Drive Encryption.

Small Tips

Note that this feature requires not only the support of the hardware TMP technology, but also that the file remains encrypted only when it is stored in an encrypted partition. If we copy the file to another drive or computer, the file will be decrypted.