BitLocker™ Drive Encryption Team Blog

  • Access Denied Error 0x80070005 message when initializing TPM for Bitlocker

    Hello, my name is Manoj Sehgal. I am a Senior Support Engineer in the Windows group and today’s blog will cover How to initialize TPM successfully when you enable Bitlocker in Windows 7. A common problem we have seen since the release of Windows...
  • How to backup recovery information in AD after Bitlocker is turned ON in Windows 7

    Hello, my name is Manoj Sehgal. I am a Senior Support Engineer in the Windows group and today’s blog will cover “How to backup recovery information in AD after Bitlocker is turned ON in Windows 7.” A common question we are asked is...
  • Bitlocker Policies for Windows 7 on Windows Server 2003 or Windows Server 2008

    Hello, my name is Manoj Sehgal . I am a Support Escalation Engineer in the Windows group and today’s blog will cover “How to get the bitlocker policies for windows 7 for on Windows Server 2003 as domain functional level” If you open...
  • How to use Hash of TPM from AD to reset your TPM password

    Hello, my name is Manoj Sehgal. I am a Support Escalation Engineer in the Windows group and today’s blog will cover “How to use Hash of TPM from AD to reset your TPM password”. As per Best Practices for Bitlocker we configure a Group...
  • Issues Resulting in Bitlocker Recovery Mode and Their Resolution

    My name is Tanner Slayton and I am a Sr. Support Escalation Engineer for Microsoft on the Windows Core Team. I am writing today to shed some light on a common Bitlocker problem that we see. * While you can accomplish most tasks via the Bitlocker...
  • BitLocker & Application Compatibility

    Recently I received an interesting question around BitLocker & Application Compatibility. In other words will an application, which works on a machine without BitLocker also work on a machine with BitLocker enabled? I believe it sounds as simple a...
  • Top 10 Reasons for Deploying BitLocker on Branch Office Servers

    Top 10 Reasons for Deploying BitLocker on Branch Office Servers 1. Information Loss is Costly Information is the key asset of IT industry. Losing this asset or getting it in wrong hands can be equally damaging for all businesses small, medium...
  • BitLocker Makeover

    The Windows Vista RC1 release is quickly approaching and I know many of you are eager to hear the latest and greatest news about BitLocker. Well, wait no more my fervent comrades! Anyone who is familiar with previous builds may recall walking through...
  • Open Sesame: BitLocker Recovery Passwords

    Anyone who has tried enabling BitLocker will have been greeted with a friendly dialog box insisting that you create a recovery password. I remember the first time I saw this, I found myself asking, “what is this recovery password, and what am I supposed...
  • Keys to the Kingdom

    Every wonder about all those keys in BitLocker? Here's the scoop on the ones you need to care about.
  • Heidi Waterhouse

    Heidi Waterhouse is a technical writer with the BitLocker team. She spends her time translating security concepts into actionable steps.
  • BitLocker and unallocated space

    I often see two questions related to free (a.k.a. “unallocated”) disk space when people talk about Windows BitLocker™ Drive Encryption on various forums: Q: What happens to unallocated space when I enable BitLocker on my volume? Does it get encrypted...
  • Bulat Shelepov

    Bulat Shelepov is a Software Development Engineer with the System Integrity team at Microsoft.
  • Doing our part for BitLocker™ Drive Encryption: Particular requirements around partitioning

    On May 23-25, members of the BitLocker team participated in the Windows Hardware Engineering Conference (WinHEC) in Seattle. It was a successful event for us, and we even got some mentions in keynote speeches. Everyone we talked to understood the importance...
  • Why you need to own your Trusted Platform Module (TPM)

    You might think that having your TPM security hardware be “owned” may not be a good thing. If you’re well-versed in slang , you’re excused. However, to own or “take ownership” of your computer’s TPM is actually desirable for both functionality and security...
  • “Is anyone out there?” — Using physical presence to turn on the Trusted Platform Module (TPM)

    Malicious software can lurk in the most humorous of dancing baby videos and cause havoc on your computer. To help protect against malware taking control of your computer's Trusted Platform Module (TPM) security hardware, computer manufacturers should...
  • Xian Ke

    Xian colludes with coworkers as a Program Manager on the System Integrity team of Windows Security. She started full-time at Microsoft in 2004 after undergraduate and graduate work at MIT and assorted internship stints. She puts academic knowledge...
  • BitLocker™ Technical Overview — Now Available

    It’s been a while since WinHEC 2005, and it was time for a meaningful refresh of our BitLocker docs. In an effort to crystallize the product functionality in one relatively short, yet technical document, I have updated the BitLocker Technical Overview...
  • Purna Gathani

    I work in System Integrity-BitLocker Team as a Program Manager managing TAP customers to validate and gather feedback on pre-release products. I have been at Microsoft for 7 yrs primarily supporting and managing Enterprise customer needs.
  • BitLocker™ and FIPS

    Because we have many government customers who will want to run FIPS-compliant software, Microsoft will certify BitLocker™ to the FIPS 140-2 standard. This is a long process, but if all goes well we should be in good shape within a few months after shipping...
  • Welcome

    Welcome to the BitLocker™ Drive Encryption Team blog! The focus of this blog is to post technical content on a range of topics, but especially how you, our customers, can use BitLocker. Posts will include things like: Announcements of new documents...
  • Tony Ureche, Ph.D.

    Tony is a Program Manager for the System Integrity part of the Windows Security team. Tony is working on key management, standards compliance and threat modeling. He has been working at Microsoft for over 6 years on several security technologies. He...
  • Byron Hynes

    I'm Byron Hynes. I am part of Windows Server User Assistance (WSUA), where I focus on our security technologies, including BitLocker Drive Encryption and others. My job is about getting useful information to our customers who use our products to get their...