Question : Protect a Partition - Use Bitlocker or Something Else?

I have a Dell workstation running Windows 7 Ultimate 64-bit. Two disk drives. Drive one has the C: partition and the recovery partition. Drive two has two partitions - the Windows swap file and a partition that holds all my data files (call it F: below).

I would like to secure the data on F:. Actually, there are two folders on F: that have the information I really want to secure. The other folders are optional.

I want protection that is reasonably secure, reliable, and easy to use. I do not need military-quality protection, though.

My questions:

* Would Bitlocker suffice for this? What are the pro's and con's of using Bitlocker?

* If I use Bitlocker what should I look out for? (I already know about the Microsoft articles and plan to read them. I'm looking for any practical expert advice you may have.)

* If not Bitlocker, then what?

* Is it practical to protect just those two folders or should I protect the entire F: partition?

* Should I consider protecting C: since Windows and programs such as Office store temp files in various places on C:?

Thanks.

Answer : Protect a Partition - Use Bitlocker or Something Else?

Personally, I think the risk of an unencrypted C: drive is very small IF you have moved (a) the swap file;  (b) the TEMP folder; and (c) your e-mail store (if it's local) off of C: to an encrypted drive.    All three of those are simple to do.      Most applications keep their data in your designated documents folder ... and any you use that don't are most likely configurable -- so you can easily ensure they also keep their data in an encrypted drive.

I agree, however, that's it's much simpler to not have to worry about that -- and simply encrypt everything (C: included).     While that may create issues with Acronis, note that Windows 7's built-in Backup utility will easily create a system image ... and it supports BitLocker  [not to mentioned that it's free :-)  ].      Aside from "playing" with it to confirm it works (it does ... and quite well) I don't use it, as I have a complex multi-boot system with 8 OS's that I image fairly regularly -- I use an Image Set with Boot-It NG to do those images (but none of these are encrypted).