• chairman@feddit.nl
    link
    fedilink
    English
    arrow-up
    30
    ·
    9 months ago

    Question: if I have an bitlocker encrypted SSD in a modern computer with embedded TPM, can I move this SSD to an old computer with external TPM to sniff the cod this way? Be gentle. I am dumb. Thanks.

    • jmfwnsfw@lemmynsfw.com
      link
      fedilink
      English
      arrow-up
      19
      ·
      9 months ago

      Not unless you entered your recovery code to unlock it on the old computer with the external tpm.

    • Bitflip@lemmy.ml
      link
      fedilink
      English
      arrow-up
      7
      arrow-down
      1
      ·
      9 months ago

      Nope. As soon as you move the disk to your second system/TPM, you lose any ability to decrypt it at all.

          • baseless_discourse@mander.xyz
            link
            fedilink
            English
            arrow-up
            2
            ·
            9 months ago

            For LUKS user set the key; for bitlocker, I believe the key is automatically uploaded to either your Microsoft account or you system admin’s account.

            • Bitflip@lemmy.ml
              link
              fedilink
              English
              arrow-up
              2
              ·
              9 months ago

              Sure LUKS will do what you tell it. Bitlocker will do what it wants and just use the TPM unless you jump through a bunch of group policy edits and such. But you are correct, I had forgotten it does give you the option to backup the key to a txt file during the installation or initial encryption process :)