[BBLISA] whole disk encryption

John Orthoefer jco at direwolf.com
Tue Aug 24 10:12:57 EDT 2010


This is where the "hook" is for FDE drives.  So it is encrypted if you have a self encrypting drive.   But if you don't have an encrypting drive.   It's up to the BIOS to enforce the password. 

As far as nothing to do about it.   Turns out Dell can generate a OTP/Key based off the "serial number" presented at boot up.

johno



> 
> The disadvantage of the HD pass is:  You have to constantly enter the HD
> pass.  Every time you power-on, or wake up.  The drive is not encrypted;
> just locked.  Which means data could be recovered from it by disassembling
> it, or maybe by swapping the electronic circuit.  Also, the HD pass would be
> subject to a brute-force attack.  If you lose your password, there's nothing
> you can do about it.



More information about the bblisa mailing list