Full disk encryption on GPT

[Das Xardas]

Hello,
I wanted to ask, if will be available full disk encryption on GPT driver in near future? It'll be very useful feature. Thank you very much

[Enigma2Illusion]

I believe you are referencing the UEFI which is the special partition that must remain unencrypted in order to boot your PC.

For example, my external drives are GPT and encrypted with VeraCrypt.

https://www.veracrypt.fr/en/System%20Encryption.html

Note: By default, Windows 7 and later boot from a special small partition. The partition contains files that are required to boot the system. Windows allows only applications that have administrator privileges to write to the partition (when the system is running). In EFI boot mode, which is the default on modern PCs, VeraCrypt can not encrypt this partition since it must remain unencrypted so that the BIOS can load the EFI bootloader from it. This in turn implies that in EFI boot mode, VeraCrypt offers only to encrypt the system partition where Windows is installed (the user can later manualy encrypt other data partitions using VeraCrypt). In MBR legacy boot mode, VeraCrypt encrypts the partition only if you choose to encrypt the whole system drive (as opposed to choosing to encrypt only the partition where Windows is installed).

Hence, you can only system encrypt the OS partition due to UEFI.

[Das Xardas]

Yes, you're right. So there is no way to use UEFI and full disk encryption? Bitlocket leaves also this small partition unencrypted?

[Enigma2Illusion]

So there is no way to use UEFI and full disk encryption?

Correct. The EFI boot partition must be left unencrypted.

Bitlocker leaves also this small partition unencrypted?

Yes.