Comment by function_seven
1 day ago
That only strengthens the parent point. Switch to an OS where this requirement doesn't come into play if you're worried about any governments having a backdoor into your own machine.
1 day ago
That only strengthens the parent point. Switch to an OS where this requirement doesn't come into play if you're worried about any governments having a backdoor into your own machine.
> Switch to an OS where this requirement doesn't come into play
I use BitLocker on my Windows box without uploading the keys. I don't even have it connected to a Microsoft account. This isn't a requirement.
Considering Windows's history with user consent I would be worried about the keys eventually being uploaded without asking the user and without linking online accounts.
Probably not now but not something unimaginable in some future.
However, since Windows can still run on user-controlled hardware (non-secure boot or VMs), I guess this kind of behavior could be checked for by intercepting communications before TLS encryption.
except Microsoft probably as a master key
People know the system well enough to write FOSS implementations of it; I think they would have noticed and sounded the alarm if there were a possible master key.
3 replies →
If you sync your Linux machines key in the cloud, police could subpoena it too. The solution is not to switch to Linux, but to stop storing it in plain text in the cloud.
Do you know what a private key means in this context?
No, I don't. The bitlocker key is a symmetric key.
3 replies →