Best encryption sw for home laptop

Best encryption sw for home laptop
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Computer Software Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Best encryption sw for home laptop emailchrisco 06-19-2006
Posted by on June 19, 2006, 12:53 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
I've been researching encryption software for a few days and I think
I'd better ask for some help. Please excuse me if I say something
here that shows my ignorance. And feel free to correct me, I'm trying
to learn about this so I can make the best decision.
It looks like PGP and Truecrypt are well thought of, but I don't think
they have everything I want. I'm looking for
1) Excellent encryption so that it would be beyond the means of any
individual or group to get my data.
2) Ability to set up sort of a virtual drive or set up a folder so
that anything that I put there is automatically encrypted.
3) Ability to create and send encrypted files to people and they can
open them if I tell them the password or key
4) Ability to put encrypted backups on DVDs.
Am I asking too much for one product? I like the idea of an open
source product, but I guess a lot of people trust products that aren't
open source, so I guess I could too maybe. If there is something that
meets my needs, I'm willing to pay for it, so it doesn't have to be
free.
Thanks a lot everybody, I appreciate your input.


Posted by Sebastian Gottschalk on June 19, 2006, 1:10 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
emailchrisco@gmail.com wrote:
> I've been researching encryption software for a few days and I think
> I'd better ask for some help. Please excuse me if I say something
> here that shows my ignorance. And feel free to correct me, I'm trying
> to learn about this so I can make the best decision.
> It looks like PGP and Truecrypt are well thought of, but I don't think
> they have everything I want. I'm looking for
> 1) Excellent encryption so that it would be beyond the means of any
> individual or group to get my data.

EFS, TrueCrypt and GnuPG.

> 2) Ability to set up sort of a virtual drive or set up a folder so
> that anything that I put there is automatically encrypted.

EFS, TrueCrypt.

> 3) Ability to create and send encrypted files to people and they can
> open them if I tell them the password or key

TrueCrypt. Now for GPG this must be done manually.

> 4) Ability to put encrypted backups on DVDs.

TrueCrypt, GnuPG. Again, the latter needs manual invocation.

Posted by on June 19, 2006, 3:35 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

Thanks Sebastian.
I also wanted to ask about secure file delete (what hapens if I delete
a file from the encrypted folder?) and about the danger of having some
data in plain text in the swap file (or page file) that cold be taken
from there more easily that the encrypted area. Also this. My
situation is that I usually leave my computer up and running, even when
I leave the house and overnight it is left on. So if a thief steals it
(and they don't turn it off or reboot it) are they past my encryption
defenses since I was just there and was working with encrypted data?


Posted by Sebastian Gottschalk on June 19, 2006, 3:51 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
emailchrisco@gmail.com wrote:
> Thanks Sebastian. I also wanted to ask about secure file delete (what
> hapens if I delete a file from the encrypted folder?)

TrueCrypt: The reference to the file data is deleted. Now if someone
obtained your encrypted container, he could still recover the data if he
knew the key.

EFS: As above, but the symmetric key associated with file is
overwritten. As this key is usually per-file and never exported, it's a
bit safer.

In any case, a secure overwrite of either the file itself or the free
space after deleting removes the data. Now that's why I have an "shred
-z" in my crontab.

> and about the danger of having some data in plain text in the swap
> file (or page file)

Yeah, that might be a problem. However, what about common crypto
solutions for the swap file? On Linux you've got dmcrypt and
crypto-loop, on Windows you may take a look at CryptoSwap Guerilla.

> are they past my encryption defenses since I was just there and was
> working with encrypted data?

Yes. A crypto filesystem only protects a cold filesystem and should be
transparently accessible in active state. Either dismount it (manually
or automatically on idling) or use/add a file-based encryption.

Posted by nemo_outis on June 19, 2006, 3:57 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
emailchrisco@gmail.com wrote in news:1150745738.468582.228900
@h76g2000cwa.googlegroups.com:

>
> Thanks Sebastian.
> I also wanted to ask about secure file delete (what hapens if I delete
> a file from the encrypted folder?) and about the danger of having some
> data in plain text in the swap file (or page file) that cold be taken
> from there more easily that the encrypted area. Also this. My
> situation is that I usually leave my computer up and running, even when
> I leave the house and overnight it is left on. So if a thief steals it
> (and they don't turn it off or reboot it) are they past my encryption
> defenses since I was just there and was working with encrypted data?


0. You can delete a file from a truecrypt volume as simply (or as
elaborately) as you wish - just as with any other drive. However, this
does seem superfluous since the encryption provides all the protection you
would normally need).

1. It is possible to have the swap file encrypted by having it on a
Truecrypt volume. The volume is mounted with the "system" mount option -
it's in the Truecrypt documentation.

2. You can encrypt much of the "user space" by using the third-party
truecrypt addon TCGINA at:

http://www.truecrypt.org/third-party-projects/tcgina/

3. If you leave the machine up and running then the files on any mounted
Truecrypt drives are accessible unencrypted - the thief has full access
(how would the machine know the difference between the thief and you?). As
a minimum you should use "Logo L" (or run the equivalent: rundll32.exe
user32.dll, LockWorkStation This works better if you have fast user
switching enabled - which you shouldn't!) to lock the machine (which will
stop amateurs at least). Fanatics will make sure that there are no other
routes in (LAN, firewire, etc.).

Regards,




Similar ThreadsPosted
Laptop Question from Cornwall.... September 29, 2005, 1:24 pm
Very Slow to startup laptop ? July 22, 2006, 7:20 pm
Tracking of every event on laptop July 22, 2008, 11:24 am
U.S. government mandates laptop security July 6, 2006, 10:50 pm
Home Lab May 21, 2008, 6:35 pm
Re: Best way to protect a laptop from highly skilled hackers and professionals July 30, 2006, 4:47 pm
home computer password November 27, 2005, 12:33 pm
Are You Looking For A Serious Home Based Business? January 30, 2006, 4:40 pm
Types of Attacks possible on a home computer.. April 8, 2007, 12:47 am
Home network admin - can he browse my files? March 9, 2006, 8:59 am

The site map in XML format XML site map

Contact Us | Privacy Policy