Ryfujk

How were pictures turned from film to a big picture in a picture frame before digital scanning?

Most effective melee weapons for arboreal combat? (pre-gunpowder technology)

Caught masturbating at work

How often does castling occur in grandmaster games?

How to ask rejected full-time candidates to apply to teach individual courses?

GDP with Intermediate Production

Constant factor of an array

What does it mean that physics no longer uses mechanical models to describe phenomena?

In musical terms, what properties are varied by the human voice to produce different words / syllables?

Should a wizard buy fine inks every time he want to copy spells into his spellbook?

Why do early math courses focus on the cross sections of a cone and not on other 3D objects?

malloc in main() or malloc in another function: allocating memory for a struct and its members

Flight departed from the gate 5 min before scheduled departure time. Refund options

Mounting TV on a weird wall that has some material between the drywall and stud

Why are vacuum tubes still used in amateur radios?

AppleTVs create a chatty alternate WiFi network

A term for a woman complaining about things/begging in a cute/childish way

Why is the change of basis formula counter-intuitive? [See details]

Can an iPhone 7 be made to function as a NFC Tag?

Nose gear failure in single prop aircraft: belly landing or nose-gear up landing?

Asymptotics question

Weaponising the Grasp-at-a-Distance spell

Putting class ranking in CV, but against dept guidelines

What would you call this weird metallic apparatus that allows you to lift people?

Why BitLocker does not use RSA

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}

1

If I do not understand wrong from this post and Wikipedia page of the BitLocker and TPM, by default, BitLocker uses symmetric cryptography like AES. However, TPM is capable of performing RSA encryption.
Given that, the RSA key is stored in the TPM, why BitLocker does not use the asymmetric encryption (i.e., RSA)? By using such encryption technique, we might be able to defend against the cold boot attack or sniffing on LPC bus.

aes rsa tpm bitlocker cold-boot-attack

share|improve this question

asked 3 hours ago

user3862410user3862410

61

New contributor

user3862410 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

add a comment | 

1

If I do not understand wrong from this post and Wikipedia page of the BitLocker and TPM, by default, BitLocker uses symmetric cryptography like AES. However, TPM is capable of performing RSA encryption.
Given that, the RSA key is stored in the TPM, why BitLocker does not use the asymmetric encryption (i.e., RSA)? By using such encryption technique, we might be able to defend against the cold boot attack or sniffing on LPC bus.

aes rsa tpm bitlocker cold-boot-attack

share|improve this question

asked 3 hours ago

user3862410user3862410

61

New contributor

user3862410 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

add a comment | 

If I do not understand wrong from this post and Wikipedia page of the BitLocker and TPM, by default, BitLocker uses symmetric cryptography like AES. However, TPM is capable of performing RSA encryption.
Given that, the RSA key is stored in the TPM, why BitLocker does not use the asymmetric encryption (i.e., RSA)? By using such encryption technique, we might be able to defend against the cold boot attack or sniffing on LPC bus.

aes rsa tpm bitlocker cold-boot-attack

share|improve this question

asked 3 hours ago

user3862410user3862410

61

New contributor

user3862410 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share|improve this question

asked 3 hours ago

user3862410user3862410

61

New contributor

user3862410 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share|improve this question

asked 3 hours ago

user3862410user3862410

61

New contributor

user3862410 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 3 hours ago

user3862410user3862410

61

New contributor

user3862410 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 3 hours ago

user3862410user3862410

61

1 Answer
1

active

oldest

votes

2

Asymmetric encryption like RSA is limited in that you can only use it to encrypt data the size of the key. With a 2048 bit key, you can only encrypt 2048 bits of information. For this reason RSA is unsuitable for bulk encryption like disks - and even for small files like email messages.

This is why almost all uses of asymmetric encryption involve "hybrid encryption". RSA is used to encrypt the key for a symmetric algorithm like AES, and AES is used to encrypt the bulk data. PGP is an example of a hybrid encryption application.

share|improve this answer

answered 2 hours ago

gowenfawrgowenfawr

54.9k11115162

add a comment | 

Your Answer

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "162"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
noCode: true, onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});

user3862410 is a new contributor. Be nice, and check out our Code of Conduct.

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f207771%2fwhy-bitlocker-does-not-use-rsa%23new-answer', 'question_page');
}
);

Post as a guest

Name

Email

Required, but never shown

2

Asymmetric encryption like RSA is limited in that you can only use it to encrypt data the size of the key. With a 2048 bit key, you can only encrypt 2048 bits of information. For this reason RSA is unsuitable for bulk encryption like disks - and even for small files like email messages.

This is why almost all uses of asymmetric encryption involve "hybrid encryption". RSA is used to encrypt the key for a symmetric algorithm like AES, and AES is used to encrypt the bulk data. PGP is an example of a hybrid encryption application.

share|improve this answer

answered 2 hours ago

gowenfawrgowenfawr

54.9k11115162

add a comment | 

2

Asymmetric encryption like RSA is limited in that you can only use it to encrypt data the size of the key. With a 2048 bit key, you can only encrypt 2048 bits of information. For this reason RSA is unsuitable for bulk encryption like disks - and even for small files like email messages.

This is why almost all uses of asymmetric encryption involve "hybrid encryption". RSA is used to encrypt the key for a symmetric algorithm like AES, and AES is used to encrypt the bulk data. PGP is an example of a hybrid encryption application.

share|improve this answer

answered 2 hours ago

gowenfawrgowenfawr

54.9k11115162

add a comment | 

Asymmetric encryption like RSA is limited in that you can only use it to encrypt data the size of the key. With a 2048 bit key, you can only encrypt 2048 bits of information. For this reason RSA is unsuitable for bulk encryption like disks - and even for small files like email messages.

This is why almost all uses of asymmetric encryption involve "hybrid encryption". RSA is used to encrypt the key for a symmetric algorithm like AES, and AES is used to encrypt the bulk data. PGP is an example of a hybrid encryption application.

share|improve this answer

answered 2 hours ago

gowenfawrgowenfawr

54.9k11115162

share|improve this answer

answered 2 hours ago

gowenfawrgowenfawr

54.9k11115162

answered 2 hours ago

gowenfawrgowenfawr

54.9k11115162

answered 2 hours ago

gowenfawrgowenfawr

54.9k11115162