Slashdot Mirror

← Back to Stories (view on slashdot.org)

TrueCrypt Alternatives Step Up Post-Cryptanalysis

Posted by Soulskill on Tuesday April 7, 2015 @07:56AM from the rebuilding-with-confidence dept.

msm1267 writes: What's next for TrueCrypt now that a two-phase audit of the code and its cryptography uncovered a few critical vulnerabilities, but no backdoors? Two alternative open source encryption projects forked TrueCrypt once its developers decided to abandon the project in early 2014, giving rise to VeraCrypt and CipherShed — and both are ready to accelerate growth, compatibility and functionality now that the TrueCrypt code has been given a relatively clean bill of health.

1 of 83 comments (clear)

Min score:

Reason:

Sort:

Better question than "what's next" by pla · 2015-04-07 08:12 · Score: 1, Redundant

Instead of asking "what now", doesn't anyone wonder why TC chose to self-destruct, invoking its own canary and refusing to let anyone keep the name?

If the devs just wanted out, they could have passed on the name to a blessed successor. Even if they wanted to act petty and protect the name for no good reason, they didn't need to invoke their canary. Something about this just doesn't make a whole lot of sense.

Hmm, if we question whether or not we can trust that the NSA didn't get to the original devs... How can we trust that they didn't get to the auditors? "Yup, all clear! Enjoy! (Can I have my kids back now, Mr. Suit?)"