3 November 2014. A sends:
How to Disable OneDrive Completely
1 November 2014
Microsoft OneDrive in NSA PRISM
1) Bitlocker keys are uploaded to OneDrive by 'device encryption'.
"Unlike a standard BitLocker implementation, device encryption is enabled
automatically so that the device is always protected.
If the device is not domain-joined a Microsoft Account that has been granted
administrative privileges on the device is required. When the administrator
uses a Microsoft account to sign in, the clear key is removed, a recovery
key is uploaded to online Microsoft account and TPM protector is created."
2) Device encryption is supported by Bitlocker for all SKUs that support
connected standby. This would include Windows phones.
"BitLocker provides support for device encryption on x86 and x64-based computers
with a TPM that supports connected stand-by. Previously this form of encryption
was only available on Windows RT devices."
3) The tech media and feature articles recognise this.
"... because the recovery key is automatically stored in SkyDrive for you."
4) Here's how to recover your key from Sky/OneDrive.
"Your Microsoft account online. This option is only available on
non-domain-joined PCs. To get your recovery key, go to ...onedrive.com..."
5) SkyDrive (now named OneDrive) is onboarded to PRISM. (pg 26/27)