truecrypt.org · Domains · Slashdot Mirror

Re:FIPS 140-2? by keihin · 2008-02-06 08:54 · Score: 1 · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

http://www.truecrypt.org/docs/?s=compliance-with-standards

TrueCrypt complies with the following standards, specifications, and recommendations:

* PKCS #5 v2.0 [7]

* FIPS 197 [3]

* FIPS 198 [22]

* FIPS 180-2 [14]

* ISO/IEC 10118-3:2004 [21]

Re:Slashdotted by macdaddy · 2008-02-06 07:59 · Score: 1 · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

This isn't the page I was looking for but it does elude to the problem:

Protection of Hidden Volumes Against Damage

So basically you have to provide both the key for the outer volume and the key for the hidden volume to prevent damage to the hidden volume. Essentially it is trivially easy to damage the hidden volume. That's not the page I was looking for but it essentially talks about the same thing. I wasn't aware of the 2nd-key trick to prevent damage though. That helps but I can easily see that being forgotten; I'm sure I'd forget it if I used the hidden partition.

Re:The final excuse. by TAiNiUM · 2008-02-06 05:18 · Score: 2, Informative · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

But if your backups are unencrypted then what is the point of encrypting the primary operating drive?

From their FAQ:

Q: I forgot my password - is there any way to recover the files from my TrueCrypt volume?

A: TrueCrypt does not contain any mechanism or facility that would allow partial or complete recovery of your encrypted data without knowing the correct password or the key used to encrypt the data. The only way to recover your files is to try to "crack" the password or the key, but it could take thousands or millions of years depending on the length and quality of the password/keyfiles, on software/hardware efficiency, and other factors.

Re:Independence from Kernel Internals? by Trevelyan · 2008-02-06 04:12 · Score: 1 · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

Only volume (file) encryption is supported on Linux.
Not full system encryption, that is only available for MS Windows.

Re:Independence from Kernel Internals? by Trevelyan · 2008-02-06 04:12 · Score: 1 · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

Only volume (file) encryption is supported on Linux.
Not full system encryption, that is only available for MS Windows.

Re:Slashdotted by InvisiBill · 2008-02-06 03:10 · Score: 5, Informative · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

FYI, http://www.truecrypt.org/downloads.php links to http://truecrypt.sourceforge.net/downloads/TrueCrypt%20Setup%205.0.exe.

Re:Encryption is for terrorists. by w3bd4wg · 2008-02-06 02:39 · Score: 1 · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

And I cant get the PGP file. http://www.truecrypt.org/downloads/TrueCrypt%205.0%20Source.tar.gz.sig

Encryption is for terrorists. by w3bd4wg · 2008-02-06 02:33 · Score: 2, Funny · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

http://www.truecrypt.org/downloads/transient/9b6d4c43d4/TrueCrypt%205.0%20Source.zip Forbidden You don't have permission to access /downloads/transient/9b6d4c43d4/TrueCrypt 5.0 Source.zip on this server. Apache/1.3.34 Server at www.truecrypt.org Port 80 I cannot get the source. The NSA has removed it.

Re:download link NOT by Anonymous Coward · 2008-02-06 02:19 · Score: 0 · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

If you'd take a moment and actually LOOK at their Sourceforge entry, you'd not have posted this. Here's what it says there:

IMPORTANT: Official TrueCrypt distribution packages can be downloaded only from www.truecrypt.org (above, select 'Project' > 'Web Site')

So - no Truecrypt 5 until http://www.truecrypt.org/ is back up. Sit tight folks.

Re:Download here (as the site seems down atm) by Anonymous Coward · 2008-02-06 02:08 · Score: 0 · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

http://superb-west.dl.sourceforge.net/sourceforge/truecrypt/IMPORTANT--Official_TrueCrypt_distribution_packages_can_be_downloaded_only_from_www.truecrypt.org.html

As of November 2, 2005, all official TrueCrypt distribution packages can be downloaded only at:

http://www.truecrypt.org/downloads.php

SourceForge.net mirror servers are no longer used. For more information, visit www.truecrypt.org

Download here (as the site seems down atm) by _bug_ · 2008-02-06 02:02 · Score: 3, Informative · on TrueCrypt 5.0 Released, Now Encrypts Entire Drive

http://sourceforge.net/projects/truecrypt/

Press release here.

We are pleased to announce that TrueCrypt 5.0 has been released. Among the new features are the ability to encrypt a system partition or entire system drive (i.e. a drive where Windows is installed) with pre-boot authentication, pipelined operations increasing read/write speed by up to 100%, Mac OS X version, graphical interface for the Linux version, XTS mode, SHA-512, and more.

After four years of development, during which millions of people downloaded a copy of TrueCrypt, it is the only open-source disk encryption software that runs on Windows, Mac OS X, and Linux. The newly implemented ability to encrypt system partitions and system drives provides the highest level of security and privacy, as all files, including any temporary files that Windows and applications create on system drives (typically, without the user's knowledge or consent), swap files, etc., are permanently encrypted. Large amounts of potentially sensitive data that Windows records, such as the names and locations of files opened by the user, applications that the user runs, etc., are always permanently encrypted as well. For more information, please see http://www.truecrypt.org/docs/?s=version-history

Time to Start Encrypting! by KookyMan · 2008-01-26 08:07 · Score: 5, Informative · on Classified Cyber-Security Directive Puts NSA In Charge

The only thing I can say, is I've started some major "learning" about encryption and various other personal privacy applications.

So far, what I've found and like are:
TrueCrypt - "On-The-Fly" Disk/Storage Encryption. Actually, I've been using this for 24 hours and love it. I've also seen great reviews of this, and some of its very interesting features, such as plausible deniability. Oh, and its Free Open Source Software. Available for Windows 2K/2K3/XP/Vista, Linux, and soon MacOS (v5.0, due in Jan 08)
KeePass - Encrypted Password Storage Database. I've been using this for years, and love it. Also good reviews. If you wish to try it, there are two versions, v1.x and v2.x. v1.x (1.10 being current) is the original independent version. Can be run standalone, no system requirements (.Net or the like). Can be run from a USB Key. v2.x (2.04 being current) is a total rewrite of the application based on the .Net libraries and are required. This version is ALPHA quality and does not yet meet the current functionality of the 1.x branch. This was started due to the fact of people requesting features that would require significant rewrites to implement. Also FOSS. Available for Windows 98/98SE/ME/NT/2K/XP/2K3/Vista 32 and 64 bit. Third party ports also available for PocketPC, Linux, MacOSX, J2ME, Blackberry, PalmOS.
Gnu Privacy Guard - An open source PGP implementation. I use a port of this, GPG for Windows. It seems a bit clunky, and am actively looking for something to replace it so suggest away if you do know something better. I will say though that it does work as advertised, and its FOSS. GPG is distributed mainly as source code I believe, where as G4W is as binaries.

People have looked at some of us who use PGP/GPG, and other encryption/digital signatures for a few years with the look of "why do I need that, I have nothing to hide." I keep waiting for people to finally wake up and realize that the concept of "inherent privacy" (meaning anything not actively publicly published is not publicly known) is gone. We have entered the age of "explicit privacy." If you want something to be private, you must make explicitly so, especially on your computer, with these recent news articles of laptops being fair searching territories at Customs, or the reports that the NSA has feeds from AT&Ts offices to intercept everything.

TrueCrypt by mwilliamson · 2008-01-24 12:37 · Score: 4, Interesting · on The iPhone Meets the Fourth Amendment

http://truecrypt.org/ and similar tools may be of use. Not only can you protect an arbitrary volume with tc, you can hide another container inside it in a truly undetectable way.

Use them for backups with Truecrypt.... by bagofbeans · 2008-01-12 12:07 · Score: 1 · on How to Say Goodbye to Old Hard Drives?

Why waste good drives?

Create a full device Truecrypt http://www.truecrypt.org/ volume on each, using the same long (20 chars of so) password for each that you will always remember, and redundantly backup stuff on them. Then put them in a drawer. The Truecrypt volume will completely fill the drive, every sector, so you've wiped the old data. And now you've got backups that no-one else can access, for free.

Everyone install this.. by JimDaGeek · 2008-01-08 11:04 · Score: 1 · on US Courts Consider Legality of Laptop Inspection

Go now and download TrueCrypt. It is free, open source and runs on Linux and MS Windows, and this month version 5.0 will run on OS X.

I use it at work, and on my Win and Lin boxes at home. As soon as 5.0 comes out, I will be all set. ;-)

Re:But by c1ay · 2008-01-08 07:49 · Score: 1 · on US Courts Consider Legality of Laptop Inspection

Well, if you used a hidden volume via TrueCrypt would they even know you had any encrypted data :)

Dual Password Encryption? by Symbolis · 2008-01-08 05:56 · Score: 1 · on US Courts Consider Legality of Laptop Inspection

I thought TrueCrypt had this capability, at least on encrypted "containers".

Basically, if you put in password1, you get one set of data decrypted(and shown). If you put in password2, you get a completely different set of data.

Seems like a good way to get past these issues...assuming I'm remembering right. ;)

Re:No you have a choice. by Em+Adespoton · 2008-01-08 05:56 · Score: 4, Informative · on US Courts Consider Legality of Laptop Inspection

Is there now a place for a program that decrypts data in two ways?

It's called TrueCrypt and is available for Windows, Linux and to some degree for OS X.

Main Features:

* Creates a virtual encrypted disk within a file and mounts it as a real disk.

* Encrypts an entire hard disk partition or a storage device such as USB flash drive.

* Encryption is automatic, real-time (on-the-fly) and transparent.

* Provides two levels of plausible deniability, in case an adversary forces you to reveal the password:

1) Hidden volume (steganography - more information may be found here).

2) No TrueCrypt volume can be identified (volumes cannot be distinguished from random data).

* Encryption algorithms: AES-256, Serpent, and Twofish. Mode of operation: LRW.

Further information regarding features of the software may be found in the documentation.

truecrypt provides plausible deniability by Anonymous Coward · 2008-01-08 05:54 · Score: 0 · on US Courts Consider Legality of Laptop Inspection

Truecrypt provides encryption, hidden volume-in-a-volume and plausible deniability. Oh, it's free and win/nux multiplatform, too.

Luckily by svelemor · 2008-01-08 05:25 · Score: 2, Informative · on US Courts Consider Legality of Laptop Inspection

... there are effective ways to protect your own privacy http://www.truecrypt.org/

Re:What a great business model! by jcaldwel · 2007-12-27 18:07 · Score: 2, Insightful · on Apple and Fox Set to Announce Movie Rental Deal

I an app developer, not a driver developer, but I have seen a few programs, like TrueCrypt fake-out the Windows Driver Architecture into using a driver that isn't associated with actual hardware.

I don't see any reason that this won't work for Video and Sound drivers (until MSFT tries to shove trusted computing down our throats). I have been considering researching the feasibility of/writing a [OSS?] driver that would take the output and encode it directly to disk. This bypasses the need to actually target the hardware itself.

Re:Ultimately.... by vix86 · 2007-12-20 12:24 · Score: 1 · on No Right to Privacy When Your Computer Is Repaired

The answer is encrypted virtual drives using TrueCrypt or even possibly AxCrypt, which can handle individual file encryption and allow for password entry every time you need to open the file.

Re:The size gives it away by tepples · 2007-12-15 18:27 · Score: 1 · on Encryption Passphrase Protected by the 5th Amendment

Why would you want to let someone know how big the files on the partition is when they don't have access to the decrypted filesystem? The attack model for TrueCrypt is based on assuming that an attacker does have access to the decrypted outer volume, such as a law enforcement officer who coaxed the password to the outer volume out of a suspect or witness. But the outer and hidden volume have different passwords, and it's impossible to prove that the hidden volume exists without its own password. But while a TrueCrypt volume can be placed in a partition, it can also be placed in a file. The attack model I suggested is based on a file-hosted volume that is found to be way oversized, such as a 1 GB finances.bin file with 10 MB of stuff in it, which makes denial of the existence of a hidden volume less plausible.

Re:Interesting thought... by jcasper · 2007-12-15 08:59 · Score: 1 · on Encryption Passphrase Protected by the 5th Amendment

As posted previously, this is already implemented: http://www.truecrypt.org/docs/hidden-volume.php

Re:Interesting thought... by santiago · 2007-12-15 08:50 · Score: 1 · on Encryption Passphrase Protected by the 5th Amendment

Imagine being able to download an open-source implementation of said cryptosystem from http://www.truecrypt.org/...

(Seriously, you must be new here. Half the comments on any encryption-and-law-related post are links to TrueCrypt.)

Re:Interesting thought... by spvo · 2007-12-15 08:46 · Score: 1 · on Encryption Passphrase Protected by the 5th Amendment

Systems like this already exist. Take a look at http://www.truecrypt.org/docs/?s=plausible-deniability. It will allow you to place a second encrypted volume inside a primary one. Then, if necessary, you can turn over the primary password and everything in the second volume is still hidden. Whats more, it is impossible to tell a second encrypted volume even exists.

Plausible deniability by Diomidis+Spinellis · 2007-12-15 07:41 · Score: 5, Interesting · on Encryption Passphrase Protected by the 5th Amendment

If the passphrase is considered keys to a safe, and you are therefore likely to be forced to divulge it, then you can avoid trouble by using an encryption system, like TrueCrypt, that supports plausible deniability. Inside the encrypted volume, blank space is always filled with random data, which can also be another nested encrypted volume. Without the correct passphrase, nobody can prove that the random bits are anything more than random bits.

Current techniques make this irrelevant by ZeroPly · 2007-12-15 07:05 · Score: 1 · on Encryption Passphrase Protected by the 5th Amendment

On my current setup with Ubuntu 7.10, it is fairly easy to set up TrueCrypt with hidden volumes.

http://www.truecrypt.org/docs/hidden-volume.php

Without any proof of the existence of a hidden volume, there is no way for the government to compel discovery. I don't bother using a hidden volume myself because I'm not concerned with plausible deniability. But without being able to tell me apart from the users that do, a judge won't be able to do anything for the government.

Technological revolution has been far faster... by Futurepower(R) · 2007-12-11 16:05 · Score: 1 · on Ohio Plans To Encrypt After Data Breach

The technological revolution has happened far faster than the ability of humans to adjust.

TrueCrypt is free encryption for both Windows and Linux. It works extremely well, in my experience.

Re:60,000 licenses? by H310iSe · 2007-12-11 14:41 · Score: 4, Informative · on Ohio Plans To Encrypt After Data Breach

truecrypt.

sigh

Re:60,000 licenses? by CodeBuster · 2007-12-11 11:45 · Score: 1 · on Ohio Plans To Encrypt After Data Breach

It seems to me that unless they need or want whole disk encryption of the boot partition, which still doesn't answer the unencrypted backup tape question, that TrueCrypt would have been perfect for them.

Re:For Encryption... by rajkiran_g · 2007-11-30 15:05 · Score: 1 · on Google's Gdrive Raises Instant Privacy Concerns

Open source: Yes
GPL: No
Moreover, the truecrypt license does not comply with the DFSG due to an advertising clause:
From Section III.1

Phrase "Based on TrueCrypt, freely available at http://www.truecrypt.org/" must be displayed by Your Product (if technically feasible) and contained in its documentation. Alternatively, if This Product or its portion You included in Your Product comprises only a minor portion of Your Product, phrase "Portions of this product are based in part on TrueCrypt, freely available at http://www.truecrypt.org/" may be displayed instead. In each of the cases mentioned above in this paragraph, "http://www.truecrypt.org/" must be a hyperlink (if technically feasible) pointing to http://www.truecrypt.org/ and you may freely choose the location within the user interface (if there is any) of Your Product (e.g., an "About" window, etc.) and the way in which Your Product will display the respective phrase.

Your Product (and any associated materials, e.g., the documentation, the content of the official web site of Your Product, etc.) must not present any Internet address containing the domain name truecrypt.org (or any domain name that forwards to the domain name truecrypt.org) in a manner that suggests that it is where information about Your Product may be obtained or where bugs found in Your Product may be reported or where support for Your Product may be available or otherwise attempt to indicate that the domain name truecrypt.org is associated with Your Product.