Notification

Icon
Error

Report showing Bitlocker Encryption Method (SSD encryption issue)

Posted: Tuesday, November 6, 2018 7:29:34 PM(UTC)
ldockery

ldockery

Member Original PosterPosts: 10
4
Like
Depending on the encryption method (hardware vs. software) Bitlocker encryption of SSD's can be bypassed. One example is that if you turn on Bitlocker, it will request the SSD to encrypt itself - which it does to the password "" (blank!).

You can tell if a system is potentially impacted by the result of a manage-bde -status command (or equivalent WMI which I don't have at this time). If the Encryption Method shows "AES", it is software based and you are safe. If it shows "hardware" then depending on the SSD manufacturer, you may be impacted.


Looking for a report that returns "Encryption Method" of Bitlocker so I can make absolutely sure that my devices aren't encrypted to a blank password that may be trivially bypassed.

Edit: Found the WMI:
Win32_EncryptableVolume.EncryptionMethod in root\cimv2\security\MicrosoftVolumeEncryption is a numeric representation of this data. The lookup is here: https://docs.microsoft.c...-win32-encryptablevolume
ABECU
#1ABECU Member Posts: 19  
posted: 11/7/2018 3:34:35 PM(UTC)
Yes, this scan needs to be possible ASAP based on impact. Thanks!
mdhuser
#2mdhuser Member Posts: 9  
posted: 11/12/2018 5:15:14 PM(UTC)
Is there any update to a report that shows the encryption method yet?
elKastr0nom
#3elKastr0nom Member Posts: 7  
posted: 10/19/2021 9:56:13 PM(UTC)
Looking for an update, on this outdated post. :)

Active Discussions

Lansweeper SSL with IIS Express Not working
by  fjca   Go to last post Go to first unread
Last post: Yesterday at 8:16:46 PM(UTC)
Lansweeper LsAgent Reliability Problems
by  marck1024  
Go to last post Go to first unread
Last post: Yesterday at 2:09:29 PM(UTC)
Lansweeper 32-BIT Linux LsAgent-linux
by  Anup Chhetri   Go to last post Go to first unread
Last post: Yesterday at 1:30:15 PM(UTC)
Lansweeper Default Scanned item intervals
by  SteelOG  
Go to last post Go to first unread
Last post: 1/25/2022 8:22:45 PM(UTC)
Lansweeper How to delete an asset
by  tgas   Go to last post Go to first unread
Last post: 1/25/2022 4:00:10 PM(UTC)
Lansweeper Can you track local printers attached to Desktops?
by  hirogen  
Go to last post Go to first unread
Last post: 1/25/2022 2:48:22 PM(UTC)
Lansweeper Duplicates - different IP address
by  Lenven   Go to last post Go to first unread
Last post: 1/25/2022 2:12:40 PM(UTC)
Lansweeper Antivirus Up to Date or Not?
by  Lindner  
Go to last post Go to first unread
Last post: 1/25/2022 12:46:21 PM(UTC)