Enable Windows Vista BitLocker
I started playing around with a new feature in Windows Vista Enterprise and Ultimate versions called BitLocker that allows the Windows partition to be encrypted. Of course, I tried to enable Bitlocker without first reading the documentation. That was a mistake, because the first thing you have to do before installing Vista is to properly partition the hard drive with a 1.5GB “System Volume” and the rest of the hard drive for the “Operating System Volume”. See Scenario 1 in the for instructions on how to properly create the partitions. These instructions using the DISKPART command have to be followed before you install Vista. I tried to do it after Vista was installed though the GUI and this method would not work.
Based on my experience, the first thing to do before installing Vista is to understand BitLocker and if it is supported by your hardware (i.e. “TPM”). Take a look at these documents:
BitLocker Drive Encryption: Technical Overview
Windows BitLocker Drive Encryption Step-by-Step Guide
BitLocker Drive Encryption Frequently Asked Questions
I thought it would be good to mention a couple misconceptions that I had about BitLocker. First of all, I thought BitLocker encrypted the entire hard drive. That is not the case; it only encrypts the Windows partition, which is typically the C: drive. Second, I thought BitLocker required a TPM chip in the laptop in order to function. This is also not correct; BitLocker can be used with a Flash Drive alone or in combination with a Flash Drive and TPM chip.
On a performance note, afer the BitLocker Wizard completed, the system rebooted and the encryption process started. It took approximately 70 minutes for my laptop (2.6Ghz P4, 1GB RAM, 8GB of data) to complete the inital encryption of the C: drive. I noticed that the process utilized most of the free space on the C: drive, but the free space returned to a normal level shortly after the process completed.
In: Uncategorized · Tagged with: BitLocker, Microsoft, Technology, Windows, Windows Vista
