So, are we talking about Full Device Encryption, here, rather than just full drive encryption?
Because I've always had the latter turned on with all my machines and I don't need to enter my key in ever (unless trying to reinstall Windows on that partition iirc).
Is there any security benefit to full device encryption vs just encrypting the partition?
edit: Looking into this has just confused me even further. I don't think there's any other form of Bitlocker on mainstream versions of Windows other than.. Bitlocker itself. And for me, it's always been transparent - Windows boots, I log in, and go. I've very rarely needed the encryption key, which, even with a keyboard, would be a godamn pain in the ass to type out every boot.
Suggests that the need for pre-boot authentication has already been done away with since Windows 8 and Secure Boot
There's also this:
That again outlines how unnecessary pre-boot authentication is if you have the appropriate-level TPM module. Which.. We have, right?