Auto-Unlock Bitlocker with eDrive (Hardware Encryption)

Self-Encrypting Drive (SED) technology provides verified and certified data security which offers nearly unbreakable pre-boot access protection for user data. Because SED access is pre-boot, there is no possibility of running an OS utility to break authentication codes. Following TCG Opal 2.0 specifications and IEEE-1667 access authentication protocols provide data security which meets government standards for data in banking, finance, medical and government applications. Support for Windows 10 eDrive provides the individual user with simple plug-and-play data security which can protect sensitive personal data, without having to modify BIOS settings, and without having to spend time to encrypt data already in place (as is the case for software encryption methods).

Since Windows 8 Professional, Enterprise, and RT editions all automatically support encryption key management of SEDs. Depends on manufacturer settings, usually and mostly SEDs will support Microsoft’s requirements for eDrive capability. This provides security for data at rest with no loss of throughput performance. In other words, in order to active the password feature, to arm the security system if you will, all it takes in Windows 10 is to enable Bitlocker. While Bitlocker in older Windows Operating Systems does not support SED technology, you can still use Bitlocker like on any other drive, it just won’t take advantage of the benefits of the hardware encryption on the SED. To help users on Windows 7 or other Operating Systems take advantage of the SED ability third-party software vendors, such as Wave Systems, WinMagic, and others provide advanced encryption and authentication management features for Opal 2.0 storage devices.

With SED, it will means that all data is always encrypted by the controller when written to the NAND and decrypted when read. Windows 10 Bitlocker, along with other products, can work with this built-in hardware encryption ability when you apply a password in Windows.

Continue reading

Advertisements

Switch BIOS settings from RAID to AHCI [Windows 10]

PSA: You should not be attempting these fixes unless you’re a professional!  And it goes without saying, you will ALWAYS need your local admin password, recovery media, and backups of your data before fooling around with low-level storage driver configuration — or really anything else for that matter.  See the comments section below for examples of a couple of people who ran into mishaps after encountering other underlying issues or forgetting their admin password before starting the process.  PROCEED AT YOUR OWN RISK!

It’s not uncommon to find a system on which RAID drivers have been installed and something like the Intel Rapid Storage Technology package is handling storage devices, but where an SSD might require AHCI operation for more optimal performance or configurability. In these cases, there is in fact a way to switch operation from RAID to AHCI within Windows 10 without having to reinstall.  Here’s how: Continue reading

Delete Putty Cache Keys (GitLab)

Sometimes you will get this problem when you try to connect into GitLab

The server’s host key is not cached in the registry. You have no guarantee that the server is the computer you think it is. The server’s rsa2 key fingerprint is: ssh-rsa 1024 cc:78:13:a3:68:a6:59:7e:b8:23:2d:13:3e:66:9b:b9 If you trust this host, enter “y” to add the key to PuTTY’s cache and carry on connecting. If you want to carry on connecting just once, without adding the key to the cache, enter “n”. If you do not trust this host, press Return to abandon the connection. Store key in cache? (y/n)

This will be problematic when you use GUI application like GitExtensions where you can’t enter “y” and it will wait until the user enter “y”. When something like this happen to you, you can try to remove the rsa2 key fingerprint from regedit directly. As you can follow this instruction:

  • Open regedit
  • Navigate to HKEY_CURRENT_USER\Software\SimonTatham\PuTTY\SshHostKeys
  • Right-click the entry (will have a name like rsa2@<port>:<address>)
  • Delete it

After that, you can try to pull repositories first and it will prompt you correctly then you can continue to what you need to do (pull, push) to GitLab.

Enable BitLocker Drive Encryption without a TPM

Procedures to change your computer’s Group Policy settings so that you can enable BitLocker Drive Encryption without a TPM. This use a startup key to authenticate yourself and it is located on a USB flash drive inserted into the computer before the computer is turned on. In such a scenario, your computer must have a BIOS that can read USB flash drives in the pre-operating system environment (at startup). Your BIOS can be checked by the hardware test near the end of the BitLocker setup wizard.

Continue reading

How To Manually Install Language Packs In Windows 8 (lp.cab Files)

Microsoft has made it quite easy to install a language pack in Windows 8. Just search for “Add a language” in Windows 8 and add language through the interface. If you have downloaded the lp.cab language pack file on your computer, Windows 8 does not give any straight forward option to select the source language pack file to be installed. There are two more ways to manually install a language pack in Windows 8 (only if you have downloaded the language pack in your computer).

Continue reading

Windows 8: Enable .NET Framework 3.5 (includes .NET 2.0 and 3.0) feature in Online & Offline mode!

In Windows 8, .NET Framework 3.5 (includes .NET 2.0 and 3.0) not installed by default and some applications require .NET Framework 2.0 or 3.0. The first step for us is to check the Program and Features to enable any available additional features in an Operating System. This is what you see in your Control Panel –> Program and Features. Click on Turn Windows features on or off. Here you can see .NET Framework as a feature and by default the feature is disabled. You can enable this particular right away using this GUI Tool but in order to do that you need to be connected to internet i.e. Online Mode. Other way is using DISM Command and this can be done in an Offline Mode using Windows 8 installation media. Let’s see these 2 methods.

Continue reading

How to Delete the “Windows.old” Folder in Windows 8 and 8.1

If you performed a refresh of Windows 8, upgrade to Windows 8, or a custom install of Windows 8 without formatting the drive for a clean install and selected to install Windows 8 on the same partition of the previous Windows installation, then you may have a C:\Windows.old folder left over in your new installation. The Windows.old folder contains a copy of the previous Windows installation, and can be quite large in size.
This tutorial will show you how to delete the Windows.old folder(s) generated during the installation to free up the hard drive space that the Windows.old folder(s) takes.

Continue reading