![]() ![]() ![]() For fixed and operating system drives, we recommend that you use the XTS-AES algorithm. "If you enable this policy setting you will be able to configure an encryption algorithm and key cipher strength for fixed data drives, operating system drives, and removable data drives individually. Changing the encryption method has no effect if the drive is already encrypted, or if encryption is in progress." This policy setting is applied when you turn on BitLocker. "This policy setting allows you to configure the algorithm and cipher strength used by BitLocker Drive Encryption. Microsoft gives some guidance for choosing the right choice in the group policy GUI, but it is worth repeating it here so that our readers are fully aware. Use AES-CBC 256-bit for removable drives so it is more compatible with other devices. XTS-AES-256 for operating system drives and fixed drives. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |