BitLocker Implementation

 BitLocker is a feature available in Windows Server 2008. Bitlocker is mainly concerned with protecting data on a drive that has been stolen or that can be accessed offline by bypassing file permissions. It protects the data by providing data encryption for full volumes and checks data integrity for early boot components. It is primarily used with a Trusted Platform Module (TPM), which is a hardware module found in many latest laptops as well as desktops. TPM is a microcontroller used to store keys, digital certificates, or passwords. TPM is affixed to the motherboard.

TPM can be used with BitLocker only if the TPM version is 1.2 module is not available, then still a computer can take advantage of BitLocker’s encryption technology as long as the BIOS of the computer enables reading from a USB flash device prior to loading the operating system. However, without TPM 1.2 module, you cannot use the integrity checking capabilities of BitLocker.

Let’s understand the BitLocker drive encryption. In Windows Server 2008, using bitlocker you can encrypt both system volumes  and data volumes. However in case of Windows 7, you can encrypt only system volumes.