Bitlocker and FIPS 140-2 RRS feed

  • Question

  • I understand that to have Bitlocker Drive encryption FIPS compliant , it must be encrypted while in "FIPS Mode". (The FIPS mode policy (that can be found here: Computer Configuration -> Windows Settings -> SecuritySettings -> Local Policies -> Security Options -> System Cryptography: Use FIPS compliant algorithms))

    1. Is this true, or is Bitlocker encryption FIPS140-2 without invoking FIPS mode.

    2. If one turned FIPS "ON", then encrypted the drive, then after encryption completed, turned FIPS mode "OFF" will the hard drive remain in a FIPS 140-2 compliant encryption state ???

    We need FIPS compliant hard drive encryption, but we want to avoid the problems of forcing FIPS mode on all Operating System behavior  which effects website access, application behavior, etc.

    Friday, December 3, 2010 7:35 PM


All replies