Solid state of fear: Euro boffins bust open SSD, Bitlocker encryption (it's really, really dumb)

Found on The Register on Monday, 05 November 2018
Browse Technology

Basically, the cryptographic keys used to encrypt and decrypt the data are not derived from the owner's password, meaning, you can seize a drive and, via a debug port, reprogram it to accept any password. At that point, the SSD will use its stored keys to cipher and decipher its contents. Yes, it's that dumb.

Unfortunately, the pair also note that some popular data encryption systems, including the BitLocker tool Microsoft uses in Windows 10, do not use software encryption for SSDs and rely on the drive's vulnerable hardware encryption.

That such an absolutely stupid design that it makes you wonder if it was not planned like that all along, seeing how much the government hates encryption and always calls for backdoors.