this post was submitted on 07 Feb 2024
739 points (97.7% liked)
Technology
59708 readers
5514 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Question: if I have an bitlocker encrypted SSD in a modern computer with embedded TPM, can I move this SSD to an old computer with external TPM to sniff the cod this way? Be gentle. I am dumb. Thanks.
"Sniff the cod" This is a typo right? I don't know any better, but I had a good laugh.
What about the salmon and the halibut? :-D
Not unless you entered your recovery code to unlock it on the old computer with the external tpm.
Nope. As soon as you move the disk to your second system/TPM, you lose any ability to decrypt it at all.
unless you have the key?
The key is inside the TPM.
For LUKS user set the key; for bitlocker, I believe the key is automatically uploaded to either your Microsoft account or you system admin's account.
Sure LUKS will do what you tell it. Bitlocker will do what it wants and just use the TPM unless you jump through a bunch of group policy edits and such. But you are correct, I had forgotten it does give you the option to backup the key to a txt file during the installation or initial encryption process :)
The Key is stored on the Internal TPM. Only it can unlock the SSD.