Microsoft is likely to have your Windows 10 Recovery Key

Perhaps the most important reason for not storing the encryption keys in the Microsoft server is that such data would be easily handed over to the authorities on presenting a valid warrant. Also, in case of an attack on Microsoft’s server, the privacy of the user could also be compromised.

“Users with particularly sensitive information beyond the basic personal passwords and financial data can simply use traditional local accounts rather than Microsoft accounts to avoid the possibility of key disclosure”, Young said. Not only has Microsoft enabled its BitLocker full volume encryption solution to be used on Azure IaaS VMs running its own Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2 operating systems, there is also support for using DM-Crypt, a transparent disk encryption subsystem built into Linux kernel versions 2.6 and later.

Windows Phone users would appreciate that these agreements eliminate the need to wait for carriers to first sign off on updates, they get the updates when Microsoft sends them out, resulting in a much better experience for everybody. However, this tactic may only be useful if nefarious forces haven’t already accessed the machine or its accessories after a login, which is possible to accomplish in less time than it takes to delete the key.

This out of the box service may seem like a good idea, however, security researchers have found that Microsoft may be keeping a copy your hard drive’s encryption key in the cloud by default. The core difference between Device Encryption and Bitlocker is that Bitlocker is configurable while Device Encryption is not.

According to commentators, as Windows 10 was set to automatically upload users’ recovery key to Microsoft’s servers, it was vulnerable in the event of a security breach.

Note: The BitLocker encryption tool is only available in Windows 10 Pro and not the Home version.

From the Ribbon select the drive you want to encrypt. Expect the company to do more to encourage businesses and consumers alike to pick up the new operating system. It must be a source of frustration to the company that users of Windows 7 and 8.1 appear so reluctant to switch, even though the upgrade for them is free. However, make sure that you copy the key in a safe place somewhere first – try the old and tested method of using pen and paper – in case a mishap does occur and you want to get to make a recovery. MS is not this stupid to do this kind of thing it goes against the whole point of Bitlocker and Enterprise systems.

Now you’re ready to start encrypting the drive.