The full name of bitlocker is "bitlocker drive encryption". It is a disk encryption function that Microsoft has added to Windows Vista and Windows 7, the TPM chip can be used together with the TPM chip on the computer (if there is no TPM chip, a USB flash disk can be used instead) to protect the data on the disk from being stolen or leaked. Even if a laptop, hard disk, or USB flash disk is lost, confidential data will not be leaked, provided that bitlocker is used.
Therefore, bitlocker is designed for business users and IT workers to encrypt hard disk partitions and USB disks to prevent information leakage. According to Microsoft, discarded hard disks can be encrypted using bitlocker before they are discarded, and then discarded. People who recycle or find a hard disk cannot read any data from them, speaking of this, it is really a sigh of the Guanxi brothers that the "photo camera" has already happened in the Vista era, and it can prove that you can take more time to soak up the mm, to learn how important it knowledge is.
Microsoft's bitlocker function is only available for high-end Windows Vista and Windows 7, that is, Enterprise (Enterprise Edition) and ultimate (flagship edition.
USB flash drives (SD cards) and mobile hard drives are currently the most commonly used mobile storage tools. To avoid data leakage due to the loss of USB flash drives and the tragedy of "** door", USB flash drives (SD cards) and mobile hard disk should be the most suitable thing for us to use bitlocker to encrypt.
First, insert the USB flash drive (SD card) or mobile hard drive into the computer. I have a useless SD card on hand, which is just used for demonstration. Click bitlocker drive encryption in the control panel to go to The bitlocker control page. Then you can see the encrypted hard disk, where the C and D partitions are the built-in hard disks of my notebook, partition E and partition F are my external mobile hard drive, and G is the SD card inserted to the computer just now. The bitlocker to go between them is the new feature in Windows 7, that is, the function used to encrypt the SD card now. Select the turn on bitlocker next to the SD card (G :) to be encrypted.
Bitlocker in Control Panel
Select use password to unlock the drive (use a password to unlock the drive), enter the password you want to unlock, and then click Next.
Define the unlock Password
If you are interested in using smart card, You can Google it.
After clicking Next, the "restore key" option will appear. It is used to unlock the password when we forget the password. It can be saved as a TXT file or printed directly, for comrades who do not have confidence in their memory, please be sure to keep them safe. After selecting one of them, the next button will be lit up. Click next and the wizard will be completed, click Start encrypting to encrypt the SD card.
Click Start encrypting to start encryption.
I have to mention that this encryption process is very slow based on the data size. It takes a long time to decrypt the encrypted content, so be prepared.
The encryption process is very long ..................
15 minutes later:
Encrypted
Then, return bitlocer drive encryption. the SD card icon has changed.
Change the drive icon after Encryption
Some bitlocker settings are also included:
Bitlocker settings
When you re-insert the SD card, go to the resource manager's SD card.
SD card in Resource Manager
And the password is automatically prompted:
The password is automatically displayed.
After you enter the correct password, you can read and write the content in the SD card. The drive name can also be displayed normally. The operation is the same as when no encryption is performed.
If you use a USB flash drive encrypted by bitlocker, it is best to use the FAT32 format, because it can be identified in Windows XP, but it can only be read and cannot be written. Although the encryption process is long, however, it has little impact on performance.
I tested an encrypted USB flash drive on the XP system of the VM. After inserting the USB flash drive, double-click the USB flash drive:
Interface for reading on Windows XP System Computer
Because the XP system does not integrate bitlockerProgramTo browse files rather than Windows Resource Manager.
Cannot be read directly from the resource manager on the computer where XP is installed. An integrated tool is automatically used and can only be read or written.
Tested, only read and write are allowed.
The Encrypted USB flash drive or mobile hard disk cannot read any content on the disk without a password or CMK.
According to Microsoft, bitlocker uses 128 or 256-bit AES encryption.AlgorithmIn addition, it is a perfect solution to encrypt all data and cooperate with TPM.
Reprinted please indicate the source:Reposted from the old blog --- http://www.laogeng.org
link: http://www.laogeng.org/archives/360.html