While we haven't heard anything from Dell about the details of the current problem, QT 653764, it sounds very similar to the older problem, QT 642141. Common and user key encryption are intended for sensitive user data because they require a user password in order to unlock encryption keys. The SDE policy's intent is to prevent alteration or offline attacks on the operating system by an attacker. System Data Encryption must be able to open its key while the operating system is booting, without intervention of a password by the user. At this point, the OS cannot load the registry and allow Windows to load properly.
The update alters the Windows operating system environment in a way that triggers the built-in OS attack prevention. Dell had to change and re-release DDP-E to fix the problem.ĭell describes the earlier KB 2506143/QT 642141 problem this way: Dell describes the problem in Quick Tip 642141. The whole situation is reminiscent of a similar problem with KB 2506143, a Windows Management Framework 3.0 Black Tuesday patch from January of this year, which similarly locked up and kept DDP-E users out of their machines. We know that at least one Black Tuesday patch triggers the freeze, and it's likely that more than one has to be applied at the same time - but we don't know which patches or in what order. That was Thursday, this is Monday, and Dell hasn't yet confirmed the hypothesis.
Dell is working on confirming this hypothesis." Dell has heard - as have I - that "applying the patches individually instead of in a group causes the anti-tampering protections to not be tripped. There's a fix, but it's complex.ĭell says the problem occurs on Windows 7 and 8 PCs with CMG or DDP-E, either Enterprise or Personal Edition. Although Dell posted information identifying the problem late Thursday in Quick Tip 653764, there's still no word on precisely which Black Tuesday patches trigger the anti-tampering lockout. It appears as if installing a group of patches in this month's Black Tuesday crop causes BSODs on PCs encrypted with Dell Data Protection-Encryption or forces CMGShield-protected PCs into a lockup, with a black recovery screen.
0 kommentar(er)
