alt Hacker NewsTPM-only saves you against someone pulling your drive. Probably more than enough for a USB drive. Enable startup PIN if you’re worried about someone grabbing the whole laptop.
Replies
Retr0id • yesterday at 11:13 PM
I'm asking about TPM attestation in general, not Bitlocker
➕ show 1 reply
I think it does not make much sense to protect the USB drive, as you won't be able to access it from another computer which is what USB drives are for. It makes sense to protect interval drives, but it is unlikely that someone would remove the drives and leave an expensive laptop to the owner.