BitLocker (device encryption variant)
E182213
BitLocker (device encryption variant) is a streamlined, automatic disk encryption feature designed for certain Windows devices, particularly tablets and lightweight PCs, to protect data by encrypting the system drive with minimal user configuration.
All labels observed (9)
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
Windows security feature
ⓘ
device encryption technology ⓘ disk encryption feature ⓘ |
| activationMode | automatic when requirements are met ⓘ |
| basedOn |
BitLocker (device encryption variant)
self-linksurface differs
ⓘ
surface form:
BitLocker Drive Encryption
|
| componentOf |
Windows Security app
ⓘ
surface form:
Windows device security
|
| configurationStyle |
minimal user configuration
ⓘ
streamlined ⓘ |
| defaultState | enabled automatically on supported new devices ⓘ |
| designedFor |
2-in-1 PCs
ⓘ
consumer devices ⓘ lightweight PCs ⓘ tablets ⓘ |
| developedBy | Microsoft ⓘ |
| differenceFromFullBitLocker |
fewer configuration options
ⓘ
primarily automatic enablement ⓘ |
| differsFrom |
BitLocker (device encryption variant)
self-linksurface differs
ⓘ
surface form:
full BitLocker Drive Encryption
|
| encryptionAlgorithm | AES ⓘ |
| encryptionScope | system drive ⓘ |
| introducedAs | simplified variant of BitLocker ⓘ |
| keyStorage |
Trusted Platform Module 2.0
ⓘ
surface form:
TPM
|
| managementLevel | reduced management options compared to full BitLocker ⓘ |
| operatingSystem |
Windows
ⓘ
Windows 10 ⓘ Windows 11 ⓘ Windows 8.1 ⓘ |
| policyControl | can be managed via Group Policy in managed environments ⓘ |
| primaryFunction |
automatic encryption of the system drive
ⓘ
protection of data at rest ⓘ |
| protects |
Windows system partition
ⓘ
user data stored on system drive ⓘ |
| recoveryKeyBackup |
Active Directory
ⓘ
surface form:
Active Directory (on managed devices)
Microsoft account ⓘ |
| relatedFeature |
BitLocker (device encryption variant)
self-linksurface differs
ⓘ
surface form:
BitLocker To Go
full BitLocker Drive Encryption control panel ⓘ |
| requires |
Microsoft account for key backup
ⓘ
verified boot ⓘ
surface form:
Secure Boot
Trusted Platform Module 2.0 ⓘ
surface form:
Trusted Platform Module
UEFI firmware ⓘ |
| requiresEdition | supported Windows editions with device encryption capability ⓘ |
| securityGoal |
prevent unauthorized offline access to data
ⓘ
protect data if device is lost or stolen ⓘ |
| supports | automatic device encryption on first sign-in ⓘ |
| targetUser | non-technical users ⓘ |
| userInterface | largely hidden from user ⓘ |
| uses |
hardware-based encryption support when available
ⓘ
software-based encryption when hardware encryption is unavailable ⓘ |
Referenced by (14)
Full triples — surface form annotated when it differs from this entity's canonical label.
this entity surface form:
BitLocker device encryption
this entity surface form:
BitLocker Drive Encryption
this entity surface form:
BitLocker (in select editions)
this entity surface form:
BitLocker To Go (in select editions)
this entity surface form:
BitLocker device encryption
this entity surface form:
BitLocker Drive Encryption
subject surface form:
Windows Vista Home Basic
this entity surface form:
BitLocker Drive Encryption
subject surface form:
Windows Vista Enterprise
this entity surface form:
BitLocker Drive Encryption
this entity surface form:
BitLocker Drive Encryption (some editions)
BitLocker (device encryption variant)
→
basedOn
→
BitLocker (device encryption variant)
self-linksurface differs
ⓘ
this entity surface form:
BitLocker Drive Encryption
BitLocker (device encryption variant)
→
differsFrom
→
BitLocker (device encryption variant)
self-linksurface differs
ⓘ
this entity surface form:
full BitLocker Drive Encryption
BitLocker (device encryption variant)
→
relatedFeature
→
BitLocker (device encryption variant)
self-linksurface differs
ⓘ
this entity surface form:
BitLocker To Go
this entity surface form:
BitLocker