would have been nice to hear more about personal use scenarios
I know this is an enterpris-y article, but I would have welcomed more information about decryption in personal use scenarios when you don't have an AD system or for small home office cases.
- what happens if you change your mobo/BIOS?
- more generally, what happens if your encrypted hard drive is transferred to another system?
- OS changes?
Personally, this is why I haven't used either Bitlocker or the Mac's Filevault equivalent. I don't know what it wants very well so I am concerned at what you would need to have in to get at your own data in these cases. Things will be swell until you have a problem and then what?
The one case in point I've seen was a MacAfee encryption choke when I updated my laptop's BIOS. Luckily my IT dept was on the ball and knew the workarounds, but I would have hated to have that happen with my own computer on my own time.
On the other hand, I know fully well what a TrueCrypt de-cryption requires - a password and the Truecrypt binaries.