Correct. However, if you have a way to run a PowerShell command as an administrator, you can run a single cmdlet to get access to the bitlocker recovery key.
Comment on Microsoft's Bitlocker & TPM encryption combo defeated with a $10 Raspberry Pi
kadu@lemmy.world 11 months ago
[deleted]
Godort@lemm.ee 11 months ago
n2burns@lemmy.ca 11 months ago
Isn’t the whole point of BitLocker protection from direct access? When a computer is turned off, encryption should keep the data safe. Also when a computer is turned off, basically no remote vector is going to work. AFAIK, when the computer is on, the drive is mounted and BitLocker provides no additional protection over an unencrypted drive.
kadu@lemmy.world 11 months ago
ryannathans@aussie.zone 11 months ago
Veracrypt drive encryption does not have the same problem, it would be secure even with physical access
kadu@lemmy.world 11 months ago