Vista: Multiple Startup Keys on one USB flash drive

Posted: 06-23-2006, 03:40 AM
If I have several startup keys (.FVE files) for different Vista machines on
one USB flash drive, how does each machine know which one is correct? Is the
filename recorded somewhere in the unencypted portion of the drive? Or does
it simple try all the possible .FVE files until it finds the lucky winner?

Thanks,

Vista: Multiple Startup Keys on one USB flash drive


Responses to "Vista: Multiple Startup Keys on one USB flash drive"

Jamie Hunter [MS]
Guest
Posts: n/a
 
Re: Vista: Multiple Startup Keys on one USB flash drive
Posted: 06-23-2006, 08:10 PM
Good question

There are a number of layers to the answer.
(1) The filename uses a GUID. Each key protector (refer to WMI interface) is
referenced by a GUID, these are the same GUID.
(2) The structure of the binary file contains both the GUID of the encrypted
volume and the GUID of the key protector.
(3) When decrypting the VMK, AES/CCM is used with 256-bit AES key. This is
an industry standard algorithm, that contains a nonce and a MAC (message
authentication check). If the startup key was wrong, then the MAC part of
the AES/CCM algorithm detects this and causes a failure.
(4) Should 1-3 fail, then the data would be decrypted incorrectly into
gibberish Thankfully 1-3 prevents (4).
-
Jamie Hunter [MS]

"tavis" <tavis@discussions.microsoft.com> wrote in message
news:8911F7D1-4300-4CFF-9421-CDF98F3ED857@microsoft.com...
> If I have several startup keys (.FVE files) for different Vista machines
> on
> one USB flash drive, how does each machine know which one is correct? Is
> the
> filename recorded somewhere in the unencypted portion of the drive? Or
> does
> it simple try all the possible .FVE files until it finds the lucky winner?
>
> Thanks,
tavis
Guest
Posts: n/a
 
Re: Vista: Multiple Startup Keys on one USB flash drive
Posted: 07-12-2006, 02:30 AM
Thanks again, Jamie.

I must give credit to my very inquisitive and bright colleagues for these
questions.
;-)

"Jamie Hunter [MS]" wrote:
> Good question
>
> There are a number of layers to the answer.
> (1) The filename uses a GUID. Each key protector (refer to WMI interface) is
> referenced by a GUID, these are the same GUID.
> (2) The structure of the binary file contains both the GUID of the encrypted
> volume and the GUID of the key protector.
> (3) When decrypting the VMK, AES/CCM is used with 256-bit AES key. This is
> an industry standard algorithm, that contains a nonce and a MAC (message
> authentication check). If the startup key was wrong, then the MAC part of
> the AES/CCM algorithm detects this and causes a failure.
> (4) Should 1-3 fail, then the data would be decrypted incorrectly into
> gibberish Thankfully 1-3 prevents (4).
> -
> Jamie Hunter [MS]
>
> "tavis" <tavis@discussions.microsoft.com> wrote in message
> news:8911F7D1-4300-4CFF-9421-CDF98F3ED857@microsoft.com...
> > If I have several startup keys (.FVE files) for different Vista machines
> > on
> > one USB flash drive, how does each machine know which one is correct? Is
> > the
> > filename recorded somewhere in the unencypted portion of the drive? Or
> > does
> > it simple try all the possible .FVE files until it finds the lucky winner?
> >
> > Thanks,
>
 
LinkBack Thread Tools Display Modes
 


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Forum Jump


Similar Threads
Thread Thread Starter Forum Replies Last Post
vista unresponsive at startup - lanmanserver drew Windows Vista Performance & Maintenance 4 01-28-2009 11:26 PM
Flash as RAM? Michael Windows Vista Performance & Maintenance 18 10-25-2006 09:03 AM
no connection to the internet at vista startup Velle Windows Vista Networking & Sharing 9 09-18-2006 08:44 PM
Cant use my flash drive anymore verysadguy Windows Vista Performance & Maintenance 2 09-12-2006 07:26 PM
Why won't my product keys work Terranaut Windows Vista Install & Setup 1 06-11-2006 11:29 AM