| In the absence of this feature you also face threat | | | | recovery method to access your data. |
| from drives such as USB and external storage drives. | | | | Before starting the recovery process, you must |
| When you use this tool to encrypt the system drive | | | | determine that the drive was not tampered with and |
| in Windows 7, a Trusted Platform Module (TPM) | | | | isolate the computer from the network until any risk |
| version 1.2 can be used by BitLocket to validate that | | | | presented by the system is determined. If the |
| the boot components, such as BIOS, the hardware | | | | recovered drive is an operating system drive, the |
| profile, and the operating system that has not been | | | | user must suspend and resume BitLocker protection |
| modified from the configuration that was present | | | | in windows 7 setup to update the BitLocker profile |
| when the drive was unlocked. A TPM is used to | | | | with the changed configuration. If the OS drive boot |
| store keys, passwords, and digital certificates. You | | | | components were changed and the computer has a |
| can find this chip on motherboard of a computer. | | | | TPM, the TPM should be reset by using the TPM |
| BITLOCKER1If not present on the system, the | | | | Management snap-in. If the recovered drive was a |
| operating system drive may be encrypted by using | | | | data drive, you can use the Manage BitLocker option |
| an encryption key that is stored on removable media, | | | | in the BitLocker Control Panel item to reset the |
| which must be present every time the drive is | | | | unlock method.Find it easier to log on to the |
| unlocked. Besides TPM additional authentication | | | | computer using fingerprint biometric devices with |
| methods for example personal authentication number | | | | new Windows 7 . |
| (PIN) and the presence of an external startup key | | | | Growing number of computers include embedded |
| can be required to provide multi factor authentication | | | | fingerprint readers which results in the authentication |
| before unlocking the operating system drive. | | | | of user. Software needs to be provided by the |
| BitLocker protection can be used for fixed or | | | | manufacturer so that biometric devices can be |
| removable storage drives. A fixed drive is a device | | | | supported. This results in the difficulty for the user to |
| that is permanently fixed and cannot remove | | | | manage the use of the devices. |
| frequently from the computer. There are data drives | | | | Windows 7 offers more consistent user experience. |
| SCSI and ATA are example of fixed storage device. | | | | Its advanced features allow the user to launch |
| Removable data drives can be removed without | | | | fingerprint application. It offers the following: |
| shutting down the computer. USB drives and memory | | | | 1. Availability of biometric devices in windows 7 can |
| cards are examples of removable data drives. | | | | be controlled by the user. |
| BitLocket uses encryption keys that are derived | | | | 2. For biometric devices, Device Manager tool |
| from the operating environment. These keys can be | | | | supports managing drivers. |
| a password or smart card. | | | | 3. To configure the use of the biometric data to log |
| You should use this tool very carefully and with | | | | on to a local computer Credential provider support is |
| proper instructions. If an unlock method fails, such as | | | | made available. |
| if the TPM detects a change in boot components or | | | | 4. You can easily update with Windows update as |
| a password is forgotten, you will need to use a | | | | Biometric device driver software are available. |