Cross-Platform Encryption?

Dr. Sp0ng asks: "I'm sure a lot of Slashdot readers carry around USB keychain drives or other portable media. What cross-platform encryption solutions have you found for these? The ideal solution would be something which can create a true encrypted disk image in a file, along with Windows and OS X (and perhaps even Linux) standalone executables which can mount these without requiring you to install anything. Obviously something like GnuPG could be used, but it won't let you create an actual mountable filesystem. There are plenty of Windows solutions, and Mac OS X users can simply create an encrypted DMG, but are there any cross-platform solutions out there?"

It's so obvious!

[Deltaspectre]

Rotating Cleartext as shown to be the FUTURE by Dan Brown!!!

Oh what's that? Unrelated eh? Maybe next time

Re:It's so obvious!

[thegrassyknowl]

Well, you could XOR your data, or have the disk in EXT2 format (with a small FAT32 partition at the start with EXT2 drivers for various sysems.

As for encryption, I presume you're interested in keeping the average user from sector L out of your files, should your key be "misplaced".

I'd look at GPG; it's roughly PGP compatible. There are the pay for versions of PGP for Windows that can create a big encrypted file and give it a drive letter. Maybe there exists some GPG code that can mount those files?

Truecrypt

[Saiyine]

Althought windows only, Truecrypt looks really cool and can be a real lifesaver in conjunction with pendrives or even gmail.

--
Dreamhost superb hosting.
Kunowalls!!! Random sexy wallpapers.

Re:Truecrypt

[avalys]

Ditto. Truecrypt is great, and free.

They are also coming out with a Linux version in the future, but I don't know of the timeframe.

Unfortunately, an OS X port is not planned.

A simple solution

[waynegoode]

This is not exactly what you are looking for, but how about ...

A big ZIP file on the drive.

+ It is encrypted.
+ It is cross platform if the underlying File System is.
- The computer needs a ZIP file decrypter and a encrypter if you want read/write.
- It acts like a file system, but really isn't.
- Not the best encryption.

Re:A simple solution

[jasonwea]

And the worst negative of all for me:

Typically one would have to decrypt the files to a local fixed disk where they live unencrypted while you work on them.

Options such as RAM disks exist but how readily available are these? (Think of machines where you do not have root).

Re:A simple solution

[Skuggamara]

I believe ZIP is encryptable with AES-256 now. Wouldn't this be considered "good" encryption?

Re:A simple solution

[Trepalium]

Depends on your ZIP utilty. Winzip's AES encryption != pkzip's AES encryption, and I don't think Linux unzip supports either one yet.

Re:A simple solution

[zhiwenchong]

Is there some tool that you can use to mount a zip file as a VFS? You know, like the way XP opens ZIP files like any other folder.

Re:A simple solution

[Trepalium]

Even if you didn't have to decrypt the files to open them, there's a good chance a directly opened file from a compressed volume might make it to the pagefile unencrypted (or to temporary files in %TEMP%). Depends on what risks you're willing to take. If you're just transporting files between trusted machines through untrusted areas, this may be perfectly fine (e.g. USB flash drive on a keychain). If you expect your files to be secure just because they're in an encrypted state on the disk, you might be disappointed.

Re:A simple solution

If the goal is to transport files between trusted computers, and be safe in case you drop your USB key and someone unscrupulous finds it... this seems like a case where one-time pad could be a good solution. You'd first have to transport a random file the size of the USB key to each of your trusted computers, and you'd need a file system driver that uses a prespecified OTP file to XOR the data.

Anyone who gets hold of the USB key can't do anything with it, unless they also have the OTP file. The "one time" in the OTP definition isn't here strictly followed, but it isn't a problem if the threat scenario is losing the USB key. On the other hand, if the attacker is able to make copies of the USB key without your knowledge at several different times, this would be a weakness. So the trustworthiness of the solution would depend on your paranoia and threat level...

Would anyone know of a working software solution along these lines?

Re:A simple solution

Zip files are limited to 16 bits in the header. Try and create a zip with 100,000 files. It'll stop at 32768 files.

Besides, passworded zips are trivial to crack.

Re:A simple solution

The file metadata (for example filenames) are not encrypted by WinZip at all.

Re:A simple solution

[Burz]

Can't say for certain, but Xandros Linux does have this behavior of handling a zip file like a folder. Its available via a free download so you may want to check it out.

Encrypted DMG on OS X only supports AES-128

[zhenga]

Altho Disk Utility on OS X can create encrypted disk images, it only has one encryption method which is AES-128.
(prove me wrong here, but i've search many times on google to see if other encryption methods were available)

I once created a 4 GB encrypted sparse disk image, but copying large files to it will always result in an inresponsive OS on my 867MHz G4.

Maybe a fixed sized image will work better, but what I really want is support for other encryption algorythms so the user can make the trade-off between speed and security/paranoid level. I for one would not mind encrypting a disk with Blowfish only.

On Windows I use TrueCrypt, I can't wait to see an OS X port of that (and other platforms ofcourse ;)

Re:Encrypted DMG on OS X only supports AES-128

macintoshe are slow

Re:Encrypted DMG on OS X only supports AES-128

[Bishop]

AES-128 is fast enough. An unresponsive OS is a problem with the implementation.

QEMU?

[kisielk]

I've been thinking about doing a QEMU setup on a flash drive with an encrypted file system, and including QEMU executables for various OSs. You coul d then boot up the QEMU image, which could have networking support with Samba or something, and then access the files over the network.

I haven't actually tried this yet, and I'm not entirely convinced it's a good idea, but it's one suggestion. Has anyone else tried this? Any comments or suggestions?

What the hell is wrong with you?

He specifically asked for a cross-platform solutions and not a Windows-only solution.

Re:What the hell is wrong with you?

Thus his prepended disclaimer, "Althought windows only,..." to plainly let pricks like you that he is deviating slightly from the topic. Get over yourself!

Previously on Ask Slashdot...

[Bogtha]

A pretty much identical Ask Slashdot from two years ago: Multi-Platform Encrypted Disk Image Formats?

Re:Previously on Ask Slashdot...

[aCC]

A pretty much identical Ask Slashdot from two years ago

Exactly. 2 years is definitely too old.

FreeOFTE for Win/Lin or ccrypt for Mac/Win/Lin

[Trepalium]

FreeOTFE runs in Windows and is compatible with Linux losetup/dm-crypt volumes. The only Win/Mac cross encryption program I've found is ccrypt which is unfortunately just a simple file encryption program.

Re:FreeOFTE for Win/Lin or ccrypt for Mac/Win/Lin

[Noksagt]

Thanks for the link to FreeOFTE. Looks handy.

As for single-file encryption, there are A LOT of cross-platform apps which will do this (not the least of which is gnupg).

Re:FreeOFTE for Win/Lin or ccrypt for Mac/Win/Lin

Yes, FreeOTFE seems to be just the ticket. The trick is telling the Windows FreeOTFE GUI what the exact settings of your linux encrypted container file should be.

Here are my Fedora (FC4) setup tips:

System preparation:

load needed kernel modules:
    modprobe twofish
    (may need many others, load them from /lib/modules/$(uname -r)/kernel/crypto/
    as necessary)

Creation/Usage:

create a container file:
    dd if=/dev/zero of=vol_twofish bs=1k count=700k
specify encryption for loopback access to file:
    losetup -e twofish /dev/loop0 vol_twofish
        (prompt for password will appear; enter a good one)
create filesystem on device:
    mkdosfs -F 32 /dev/loop0
mount encrypted loopback device:
    mount -t vfat /dev/loop0 /mnt/loop

Dismounting:
    umount /mnt/loop
    losetup -d /dev/loop0

In the windows FreeOTFE GUI, specify the following:
Key tab: use "Null (-1/-1)" for the hash
                    uncheck the "hash bla bla" checkbox
                    leave seed empty
                    enter password in key field
Encryption tab:
                    Use the "Twofish (CBC; 256/128)" cypher
                    use "32 bit sector ID" for the sector IV
                    click the "start of host file" radio button

leave everything else alone and click OK; this should load you up with the linux encrypted container

Embedded Damn Small Linux

[forsetti]

You *have to* check out "Embedded" Damn Small Linux. ~50MB download, extract to your USB key, and run a full blown Linux distro in QEMU (Linux and Windows QEMU included).

Bestcrypt

Bestcrypt from Jetico does what you want, and runs under Windows and Linux. It's not free. Well, the windows version isn't free. But it's one of the few solutions that will do what you need.

ZIP encryption

[Noksagt]

Yes, different archivers have different encryption. I've seen Blowfish, DES, 3DES, AES encrypted zip files (in addition to the OLD pk-zip "encryption.")

For that particular case:

That's since been fixed; WinZip can decrypt PKZip AES-encrypted files, and a PKWare program called the PKZip Reader can decrypt WinZip-created encrypted files.

(which was in the article).

Secret software to protect your secrets?

[Futurepower(R)]

I feel uncomfortable using closed-source encryption tools. Encryption is complicated. It is easy to introduce weaknesses. You don't know if secret software has back doors.

Link to Jetico.

Info-zip doesn't yet support AES

[Noksagt]

unzip will supposedly support it in 6.1 & zip in 3.1.

bcrypt and ccrypt

[iignotus]

bcrypt and ccrypt. They're all you need. Windows, Linux, whatever. Open-source and very good ciphers.

So why did you link to one?

[iignotus]

See subject heading. Was it just to warn us?

Re:So why did you link to one?

[iignotus]

Disgregard that. My mistake. I've never seen the source before.

Is this too obvious

[aminorex]

One word: Java.

It runs on Linux, Windows, OSX.

Re:Is this too obvious

One word: Wrong.

He asked for cross-platform encryption, not a cross-platform development platform. Did you even read the -summary- of the article, or is even that too much to ask of Slashdotter's now?

Re:Is this too obvious

[base3]

That, and I haven't seen a non-trivial Java business application yet that doesn't require a very specific JVM under a very specific OS (Windows) and a very specific browser (MSIE). So it's not cross platform, and incurs the p-code performance hit. A real winner.

Re:Is this too obvious

Bullshit. We run distributed video transcoding applications using Java for both server-side code and as the glue between transcoder libraries, and the application runs seamlessly on Win32 and Linux across five JVM flavors and versions (various Sun and IBM 1.4 and 1.5). Please be more careful about your gross generalizations, someone might actually assume you know what you're talking about.

Re:Is this too obvious

[base3]

Well, then you need to tell IBM, Perceptive Vision, the contractor for our state government, and probably a bunch of other people how to do it. And if it takes as much effort to achieve portability as with C++, then what good is it, given the performance hit?

Re:Is this too obvious

I use both Java and C++. Java trolls tick me off, but so do C++ trolls.

The performance hit doesn't have to be that big & for most applications, it is small enough not to matter for a lot of appications.

Java often needs fewer lines of code than C++ & also doesn't need per-platform builds, so really is a more rapid development language.

One reason you see cruddy java apps is often because you get real patchy development of java apps. They use a lot of system (and so system-dependent) calls & often run some c/c++ compiled applications (obviously system-dependent). Sometimes these are just libraries, like Java3D, which IS available for other platforms.

If the development team is honest, they will often have an UNSUPPORTED java app that works on other OS's. If they are good, the shipped version will work on other platforms if you just write the needed command(s) to launch the application in a shell script. If they are sneaky, those shell scripts might even ship with the product. And, if CORPORATE is enlightened, this will all be SUPPORTED.

Linux compatible on the fly encryption for Windows

It is CrossCrypt.

However, it hangs for me while writing lots of files on the crypto disk from windows, and the author had not replied to emails about the problem.

Just an idea....

[martian67]

I've wished for something similar in the past. One solution that occurred to me would be to create an encrypted loopback filesystem under Linux. For those not familiar with this scheme, it essentially encapsulates a filesystem in a regular file and [en|de]crypts it at the kernel level.

One potential way to access this from Windows would be using Namespace Extensions. I believe this is the way that "special folders" such as Control Panel and Scheduled Tasks are integrated into the Explorer. It would seem to be straightforward for someone knowledgable in the area to create a Namespace Extension that could mount an encrypted loopback filesystem created in Linux.

Phhtt!!

QEMU??? What good will that do? Seems like it will only lock you into a Linux only solution rather than a cross platform solution.

QEMU sounds great but the reality, like so many other open source projects, is far short. QEMU doesn't seem to be able to reliably run any OS other than Linux, as a guest.

Windows XP Pro won't work for most of the installs because of a conflict with QEMU and XP's licensing system. The workaround for this issue is to run in Safe Mode without networking. Yea, that's handy!

Netware, won't install because QEMU only supports the NE2000 driver but only on interrupt 9. But, Netware can't use interrupt 9 for the NE2000 driver so no network, which in the case of Netware means no install!

OSX? Yea, well it would work, except that we can't get the CD-ROM hardware detection to work so, like, it won't even install OSX. But you can run the PPC variant of Debian which is like the same as OSX and shit!

QEMU promises great stuff but, for practical purposes and for mainstream operating systems it blows chunks!!! As for it's ability to run Linux, that's great but, Xen and UML already has that covered. I don't need another broken emulator to run Linux.

Re:Phhtt!!

Sweet. A QEMU troll. Please look at the responses on the Newsforge page with this same troll.

Truecrypt license

[daveewart]

Ditto. Truecrypt is great, and free.

Although free to use, it's free-ness in other respects is unclear. The code is available to read (technically "open source"), but the license is a complete mish-mash of components, reflecting all the different contributions to it over the years: http://www.truecrypt.org/license.php

In particular, it states: "This product may be freely copied and/or distributed, provided that it is not modified or repackaged" and then goes on to say that you *can* repackage it as long as you attribute about 12 different people ...

Is there not a *real* Free product which does this?

Re:Truecrypt license

[Synli]

Huh? Free Software doesn't mean there are no conditions. Their license merely states conditions under which you may distribute modifications. Each Free Software license does that.

Re:Truecrypt license

[daveewart]

No, 'Free' in this sense normally refers to freedom. Something as described in the Debian Free Software Guidelines http://www.debian.org/social_contract#guidelines is a typical benchmark for Free.

Just being without cost ("free") doesn't make it Free!

Re:Truecrypt license

[Synli]

Ok, name at least one item of the Debian Free Software Guidelines which the True License does not comply with.

In case you haven't noticed: TrueCrypt is hosted on sourceforge.net, which allows only true open source projects.

Re:Truecrypt license

[Synli]

By "True License" I mean "TrueCrypt License". And one more thing, Debian Free Software Guidelines were used as the basis in creating the OSI (opensource.org) definition of open source. All projects on sf.net are required to comply with that definition.

Re:Truecrypt license

[daveewart]

Well perhaps you're right: however I'm not sure, strictly, whether it meets "3. Derived works", partly since the amount of attribution and acknowledgment one must give to the original authors is very high. Although, IANAL and it's unclear.

In whatever light, the TrueCrypt license is very messy and is extremely complicated. This in itself makes it a tricky choice.

Re:Truecrypt license

[Synli]

> This in itself makes it a tricky choice.

Well, it depends on what you need it for. If you are an average Joe user, then I doubt you'll have troubles. BUT, if you are a software corporation that plans on using their code in its commercial products, then, yes, you'd better ask your lawyers. ;-)

Re:truecrypt is open source

[Synli]

They currently work on a Linux version, which should be out soon. Now it's Windows-only.

SourceForge, License, etc.

Sourceforge.net used to allow non-open projects & many are still up there. I suspect Truecrypt was added after that change.

I agree that it is probably free according to DFSG (the attribution complaints are invalid, as the original BSD license is free). The license is NOT GPL-compatible. It also isn't recognized by the OSI. It would be preferable and should be possible for them not to pick a persnickety license.

Re:SourceForge, License, etc.

[daveewart]

The license is NOT GPL-compatible. It also isn't recognized by the OSI. It would be preferable and should be possible for them not to pick a persnickety license.

That's what I was getting at, really ... the license just sounds too complicated :-)

Try BestCrypt

[jgoemat]

BestCrypt (about $60 or 60 Euro also) creates a virtual drive into an ecrypted file and has versions available for Windows and Linux. Their SDK is free and includes source code at least for the encryption algorithms to verify they are safe and lets you plug in your own. The same file can be used in windows and linux and can even be accessed on a network share since the data is decrypted as it is used, sniffers would only see encrypted data being transferred.

It also includes the ability to use hidden volumes. You use one password and the file opens up normally, if you use another you can access a hidden volume in the file. After creating a hidden volume you shouldn't modify the non-hidden volume contents as it could overwrite your hidden data, but there is no way to tell there's a hidden volume without guessing the second password.

GNUPG

[karlan]

I just carry a usb pen with my secrect/public keys, I have a really long password, 4096 bit key, and every file is ascii armor encoded