Security sleuth thinks Microsoft's backdoor into Windows 11's BitLocker is by design
www.windowscentral.com
Microsoft issues mitigation measures for Windows 11 BitLocker flaw exploited with a USB stick.
  • raspberriesareyummy@lemmy.worldEnglish
    1·
    13 hours ago

    That clarification of yours is massively important. Your initial comment sounds as if there is a PoC from Canada on how to circumvent the PIN for the Bitlocker keys.

    Maybe that’s why you got downvoted?

    I agree the “security researcher” sounds bitter, but also they found a proven critical backdoor, so it’d be negligent to just ignore their comment about circumventing the PIN. And the only way they could put microSLOP at fault for that would be if they could find that microSLOP was backing up encryption keys in the recovery environment / boot files somewhere.

    • DefederateLemmyMl@feddit.nlEnglish
      2·
      11 hours ago

      That clarification of yours is massively important

      I think my mistake was assuming I was on a security related community, where this would be understood, instead of PC masterrace.

      Your initial comment sounds as if there is a PoC from Canada on how to circumvent the PIN for the Bitlocker keys.

      It’s a meme joke, referencing this: https://knowyourmeme.com/memes/she-goes-to-another-school

      the only way they could put microSLOP at fault for that would be if they could find that microSLOP was backing up encryption keys in the recovery environment / boot files somewhere

      Seems unlikely. The WRE is like 32MiB in size, and most of that consists of static binaries. Not much info is saved there, except for some log files. If the bitlocker keys were there, they would have already been found by someone else.