FRESH

Hacker News

Home

Microsoft gave FBI set of BitLocker encryption keys to unlock suspects' laptops

1026 points by bookofjoe

by Aurornis

64 subcomments

FYI BitLocker is on by default in Windows 11. The defaults will also upload the BitLocker key to a Microsoft Account if available.
This is why the FBI can compel Microsoft to provide the keys. It's possible, perhaps even likely, that the suspect didn't even know they had an encrypted laptop. Journalists love the "Microsoft gave" framing because it makes Microsoft sound like they're handing these out because they like the cops, but that's not how it works. If your company has data that the police want and they can get a warrant, you have no choice but to give it to them.
This makes the privacy purists angry, but in my opinion it's the reasonable default for the average computer user. It protects their data in the event that someone steals the laptop, but still allows them to recover their own data later from the hard drive.
Any power users who prefer their own key management should follow the steps to enable Bitlocker without uploading keys to a connected Microsoft account.

by ferrouswheel

23 subcomments

It's interesting how many comments these days are like, "well of course".
Back in the day hackernews had some fire and resistance.
Too many tech workers decided to rollover for the government and that's why we are in this mess now.
This isn't an argument about law, it's about designing secure systems. And lazy engineers build lazy key escrow the government can exploit.

by estimator7292

6 subcomments

My Linux drives are all encrypted, and one of the wonderful features of this is that there is no entity or force on this planet that can decrypt them.
What happens if I forget my keys? Same thing that happens if my computer gets struck by a meteor. New drive, new key, restore contents from backups.
It's simple, secure, set-and-forget, and absolutely nobody but me and your favored deity have any idea what's on my drives. Microsoft and the USGov don't have any business having access to my files, and it's completely theoretically impossible for them to gain access within the next few decades.
Don't use Windows. Use a secure operating system. Windows is not security for you, it's security for a hostile authoritarian government.

by observationist

2 subcomments

Hear that? It's the sound of the year of the Linux desktop.
It's time - it's never been easier, and there's nothing you'll miss about Windows.

by MattSteelblade

3 subcomments

Based on the comments in the thread, I sense I will be in the minority, but for most consumers this is a reasonable default. Broadly speaking, the threat model most users are concerned with doesn't account for their government. The previous default is no encryption at rest, which doesn't protect from the most common threats, like theft or tampering. With BitLocker on, a new risk for users is created: loss of access to their data because they don't have their recovery key. You are never forced to keep your recovery keys in Microsoft's servers and it's not a default for corporate users.

by cogman10

4 subcomments

> Microsoft told Forbes that the company sometimes provides BitLocker recovery keys to authorities, having received an average of 20 such requests per year.
At least they are honest about it, but a good reason to switch over to linux. Particularly if you travel.
If microsoft is giving these keys out to the US government, they are almost certainly giving them to all other governments that request them.

by axus

1 subcomments

Here's a story about what the FBI may do when they don't unlock the laptop:
https://cointelegraph.com/news/fbi-cant-be-blamed-for-wiping...
Perhaps next time, an agent will copy the data, wipe the drive, and say they couldn't decrypt it. 10 years ago agents were charged for diverting a suspect's Bitcoin, I feel like the current leadership will demand a cut.

by stego-tech

0 subcomment

I honestly love how HN is missing the forest for the trees, here, in the sense that ya’ll are upset Microsoft gave keys over for BitLocker to the feds but seemingly forget that Microsoft has been doing this in various forms since BitLocker released. Hell, they’ve given alphabet agencies tools that just pop the decryption in the field before, for intelligence work.
I trust BitLocker and Apple’s encryption to protect my stuff against snooping thieves, but I have never, ever assumed for a moment that it’d protect me against a nation-state, and neither should you. All the back-and-forth you see in the media is just what’s public drama, and a thin veil of what’s actually going on behind the scenes.
If there’s stuff you don’t want a nation state to see, it better be offline, on a OSS OS, encrypted with thoroughly audited and properly configured security tooling. Even then, you’re more likely to end up in jail for refusing to decrypt it [1][2].
[1] https://arstechnica.com/tech-policy/2020/02/man-who-refused-...
[2] https://www.vice.com/en/article/how-refusing-to-hand-over-yo...

by Jigsy

5 subcomments

This is by far one of the best advertisements for LUKS/VeraCrypt I've ever seen.

by MoltenMan

1 subcomments

I think most people don't understand that 99% of people don't know what data encryption is and definitely don't care about it. If it weren't for Bitlocker, their laptops wouldn't be encrypted at all! And of course if your software (Windows) encrypts by default but you don't want to bother the average user with the details (because they don't know anything about this or care about it) you will need to store the key in case they need it.
To everyone saying 'time to use Linux!'; recognize that if these people were using Linux, their laptops wouldn't be encrypted at all!

by tokyobreakfast

8 subcomments

This is almost certainly users who elect to store their BitLocker keys in OneDrive.
Don't think Apple wouldn't do the same.
If you don't want other people to have access to your keys, don't give your keys to other people.

by tomgag

0 subcomment

I see a lot of comments recommending TrueCrypt/VeraCrypt here, which is fine, but did you know there is something even more interesting? ;)
Shufflecake ( https://shufflecake.net/ ) is a "spiritual successor" to TrueCrypt/VeraCrypt but vastly improved: works at the block device level, supports any filesystem of choice, can manage many nested layers of secrecy concurrently in read/write, comes with a formal proof of security, and is blazing fast (so much, in fact, that exceeds performances of LUKS/dm-crypt/VeraCrypt in many scenarios, including SSD use).
Disclaimer: it is still a proof of concept, only runs on Linux, has no security audit yet. But there is a prototype for the "Holy Grail" of plausible deniability on the near future roadmap: a fully hidden Linux OS (boots a different Linux distro or Qubes container set depending on the password inserted at boot). Stay tuned!

0 subcomment

by kmoser

0 subcomment

> The hackers would still need physical access to the hard drives to use the stolen recovery keys.
Or remote access to the computer. Or access to an encrypted backup drive. Or remote access to a cloud backup of the drive. So no, physical access to the original hard drive is not necessarily a requirement to use the stolen recovery keys.

by WaitWaitWha

0 subcomment

> ... The hackers would still need physical access to the hard drives to use the stolen recovery keys.
This is incorrect. A full disk image can easily obtained remotely, then mounted wherever the hacking is located. The host machine will happily ask for the Bitlocker key and make the data available.
This is a standard process for remote forensic image collection and can be accomplished surreptitiously with COTS.

by mawise

1 subcomments

I consider myself pretty pro-privacy, but there is so much dragnet surveillance and legitimate breaches of the fourth amendment that I have a hard time getting up in arms over a company complying with a valid search warrant that is scoped to three hard drives (and which required law enforcement to have physical possession of the drives to begin with).
This is so much more reasonable than (for example) all the EU chat control efforts that would let law enforcement ctrl+f on any so-called private message in the EU.

by cmurf

0 subcomment

I'm certain I should encrypt my data, backup all LUKS headers, and backup all data.
But what about unsophisticated users? In aggregate it might be true data exfiltration is worse than data loss? I don't know if that's true.
But what is true is enabling encryption by default without automated backup and escrow will lead to some data loss.
It's difficult for me to separate the aggregate scenarios from individual scenarios. The individual penalty of data loss can be severe. Permanent.

by aeternum

0 subcomment

Not your keys not your {thing}

by dmitrygr

1 subcomments

This is why local account setup is so important on windows, and why microsoft makes it harder and harder each update.

by exabrial

0 subcomment

The US Government has quickly realized the utility of monopolies and no longer goes after them.

by swordsith

0 subcomment

Being on windows 10 really is a simple life, no windows updates, no win defender malware givng the ok on my files, no microsoft telemetry anymore, cortanas been gone since day one. Then there's win11 users getting abused on the daily.

by tamimio

0 subcomment

In the year of 2026, the rule of thumb is if you can get your work done without touching windows, then you should. It goes without saying you should never trust any third party let alone a big corp.

by ThinkBeat

0 subcomment

I fully agree that this is disconcerting form a privacy standpoint, and the danger it poses when Microsoft gets hacked.
As for it being user hostile. I am pretty certain that thousands of users a year are delighted when something has gone wrong and they can recover their keys and data from the MS Cloud.
There should perhaps be a screen in a wizard, Do you want your data encrypted? y,n
If (yes) Do you want to be able to recover your data if something bad happens? (else it will be gone for ever, you can never ever access it again) y/n

by assaddayinh

0 subcomment

So theoretically if you loose the key , you can selfreport for some small crime and get your laptop decrypted.

by commandersaki

0 subcomment

This is no different to Apple placing the encryption key for Filevault as plaintext on disk when it is turned off. Both companies make it easy for you to recover data in event of a catastrophe.

by Ms-J

0 subcomment

This happens with every company that has your sensitive info. When the government asks for your info, the companies provide it.
Some ways around this is to either not store sensitive user data on servers, or if that needs to happen then encrypt it with user supplied keys.

by nextlevelwizard

0 subcomment

No one should be surprised by this. If you are doing anything on a computer and don’t want it to be readily available to governments or law enforcement you have to use Linux

by uriegas

0 subcomment

The problems of centralization. Some economic sectors are centralized by nature, IT is not.

by docmars

0 subcomment

Big shocker! Gotta love the collusion between government and big tech, it never ends, and our 4th amendment will ever be infringed through these loopholes -- and all will carry on not caring enough about it.

by ycuser2

1 subcomments

I think it is the kind of right place to ask: Is it possible to encrypt the system disc after Linux was installed or so I have to reinstall Linux for that purpose?

by AmazingTurtle

1 subcomments

I have opted out of all cloud services in my windows installation; I use a passphrase, too (it is even before booting the computer). I feel like this is pretty safe

by ChrisArchitect

0 subcomment

[dupe] Discussion on source: https://news.ycombinator.com/item?id=46731694

by vpShane

0 subcomment

cachyOS - https://cachyos.org/ I've absolutely loved switching from Manjaro to this.
when it comes to giving out encryption keys, the answer should always be 'we don't have them.' 'you can't get them.'
Sad day for privacy at Microsoft.

by mmooss

0 subcomment

> Johns Hopkins professor and cryptography expert Matthew Green raised the potential scenario where malicious hackers compromise Microsoft’s cloud infrastructure — something that has happened several times in recent years — and get access to these recovery keys.
Bitlocker isn't serious security. What is the easiest solution for non-technical users? Does FDE duplicate Bitlocker's funcationality?

by motoboi

0 subcomment

A more honest title would be: judge order Microsoft to hand over bitlocker keys to FBI.

by ddtaylor

0 subcomment

BitLocker has a littered history of providing full disk encryption.
Use LUKS instead.

by zeroq

0 subcomment

I see two distinct problems here:
(1) false advertisement
Companies like MS and Apple are telling their clients they offer a way to encrypt and secure their data but at best these claims are only half truths, mostly smoke and mirrors.
This is not OK. I don't want to get into legal parts of it, because I'm sure there's a fine print there that literally says it's smoke and mirrors, but it's despicable that these claims are made in the first place.
(2) the real need of ironclad encryption
I was born and raised in Eastern Europe. When I was a teenager it was common that police would stop me and ask me to show them contents of my backpack. Here you had two options - either (a) you'd show them the contents or (b) you would get beat up to a pulp and disclose the contents anyway.
It's at least 5h debate whether that's good or not, but in my mind, for 90% of cases if you're law abiding citizen you can simply unlock your phone and be done with that.
Sure, there are remaining 10% of use cases where you are a whistleblower, journalist or whatever and you want to retain whatever you have on your phone. But if you put yourself in that situation you'd better have a good understanding of the tech behind your wellbeing. Namely - use something else.

0 subcomment

by drumhead

0 subcomment

Install Gentoo.....

by t1234s

1 subcomments

If you use a local windows account does it still upload your bitlocker key to M$?

by Verdex

0 subcomment

I gave up on osx 5 years ago. I gave up on Linux 3 years ago.
Today, 2 out of 3 of my machines are KDE fedora. The last one is TBD because my kids are using it.
I didn't have a choice for machine 1 because it wasn't eligible for windows 11 and windows 10 security updates were EOL. Machine 2 quickly followed.
At the time, there had been disappointing windows news every few months. Since there have continued to be disappointing windows news every few months.
I expect more disappointing windows news to follow.

by alexfromapex

0 subcomment

I don't know how many bad things Microsoft has to do before consumers realize they are a terrible company and you should stop buying their stuff.

by cess11

0 subcomment

You should carry around a Ventoy stick with Debian/XFCE and perhaps Mint on it, and a 16 TB external disk, and nag people in your local environment to let you back up their stuff and move them off MICROS~1 operating systems.
Tell them you work in IT and that you'll make their computer faster and more secure. Don't mention Linux by name.

by neuroelectron

0 subcomment

This is not a big deal and in fact it's been a thing for over a decade. If you're resourceful enough, you can do it yourself.

0 subcomment

by SilverElfin

0 subcomment

This is disappointing but I wonder if this is quid pro quo. Microsoft and Nadella want to appear to be cooperating with the government, so they are given more government contracts and so they don’t get regulatory problems (like on antitrust or whatever).

by bigyabai

1 subcomments

Quid pro quo.

by diego_moita

0 subcomment

This isn't even about Microsoft or BitLocker. This is about the U.S.A.: anyone who thrusts the rule of law in the U.S. is a fool.
Yes, the American government retrieves these keys "legally". But so what? The American courts won't protect foreigners, even if they are heads of state or dictators. The American government routinely frees criminals (the ones that donate to Republicans) and persecutes lawful citizens (the ones that cause trouble to Republicans). The "rule of law" in the U.S. is a farce.
And this is not just about the U.S. Under the "five eyes" agreement, the governments of Canada, UK, Autralia and New Zealand could also grab your secrets.
Never trust the United States. We live in dangerous times. Ignore it at your own risk.

by aeon_ai

1 subcomments

Hello there!
Have you heard of our lord and savior, Linux?

by lpcvoid

0 subcomment

Anybody thinking that anything you do on a Windows laptop is in any way private, I have a nice bridge to sell you.

by citizenpaul

0 subcomment

Relevant XKCD
https://xkcd.com/538/

by g947o

0 subcomment

So, forcing user to connect to Internet and log in to Microsoft account has more to do than tracking you and selling ads -- Microsoft may be intentionally helping law enforcement unlocking your computer -- and that's not a conspiracy.

by anonymous344

0 subcomment

lol. truecrypt and veracrypt

by popalchemist

0 subcomment

BitLocker or BootLicker?

by BitOfTheByte

0 subcomment

[dead]

by kittikitti

0 subcomment

[flagged]

by tucnak

1 subcomments

Water is wet. More news at 11

by gdevenyi

1 subcomments

What was the point of mandatory TPM then? I thought they were storing the keys securely there!

by gethly

0 subcomment

it's like microsoft has nothing better to do other than keep digging the hole to burry windows as mainstay operating system deeper and deeper with every new day.

by londons_explore

2 subcomments

> The case involved several people suspected of fraud related to the Pandemic Unemployment Assistance program
If it were preventing a mass murder I might feel differently...
But this is protecting the money supply (and indirectly the governments control).
Not a reason to violate privacy IMO, especially when at the time this was done these people were only suspected of fraud, not convicted.

by heavyset_go

0 subcomment

Your firmware and UEFI likely accept MS keys even if you supplied your own for Secure Boot. Sometimes the keys are unable to be removed, or they'll appear "removed" but still present because losing the keys could break firmware updates/option ROMs/etc.
Similarly, your TPM is protected by keys Intel or AMD can give anyone.
If you want to extrapolate, your Yubikey was supplied by an American company with big contracts to supply government with their products. Since it's closed source and you can't verify what it runs, a similar thing could possibly happen with your smartcard/GPG/pass keys.