Join Early Retirement Today
Reply
 
Thread Tools Display Modes
Data encryption software
Old 08-10-2007, 08:08 PM   #1
Confused about dryer sheets
 
Join Date: Apr 2007
Posts: 2
Data encryption software

I've been looking into buying encryption software, such as one might use on highly private documents, e.g. a list ones financial account/website user names and passwords. Not just to use for emailing the documents, but for general protection from any hackers that might attack my computer. (I wonder if paranoia is attacking me. )

Usually I can find current & thorough reviews on PC Magazine website, but no luck in this case.

Anyone have experience or recommendations for this type of software?

Thanks.
frankie is offline   Reply With Quote
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!

Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that Early-Retirement.org is a great community to join. Best of all it's totally FREE!

You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!

Old 08-10-2007, 08:21 PM   #2
Administrator
Andy R's Avatar
 
Join Date: Jan 2007
Location: Dallas, Tx
Posts: 1,220
For encrypting your files, try the free software called TrueCrypt. This is good for files on your hard drive (or even on a portable USB drive) if you change computers often.

If you want to keep your passwords organized and safe try RoboForm. This is a serious time saver and smart tool to allow you to have different long cryptic passwords at different site and it manages them and fills them in when you go to that site. All the data files for RoboForm are encrypted.
Andy R is offline   Reply With Quote
Old 08-10-2007, 08:22 PM   #3
Thinks s/he gets paid by the post
BigMoneyJim's Avatar
 
Join Date: Feb 2003
Location: Nomadic in the Rockies
Posts: 2,720
If you have Windows XP Pro (not "Home"), you have encryption capability built-in: http://support.microsoft.com/kb/307877 . I haven't used it.

Some of the zip utilities have password protection and/or encryption. The original zip password is crackable, and last I heard the encryption schemes weren't portable across brands (WinZip vs. PKZip, for example).

I'm sure there are several free open source encryption software packages, but I haven't used them and would venture a guess that they're a bit more complex to use and/or learn than the commercial products.

What I *do* have recent experience in is Utimaco SafeGuard Easy, but that encrypts an entire hard disk and doesn't protect in the event that you are "hacked"--that is if someone can log into your system then they can read your files. The advantage is if the hard drive is lost or stolen then they can't read the data without knowing how to log into your system.

I also have an encrypted USB storage stick. Kingston Dataguard I believe is the one I have. When you put it in you have to enter a password, and then the drive becomes available.

With any encryption method, be aware that if you lose or forget the password/passkey then you file will be unrecoverable. With Windows native encryption you have to be careful in how you change your password, otherwise you may be unable to decrypt your files. And if the system itself is compromised then anything you type could be recorded and your password captured, and in any system if you can currently read the file then a system administrator on the system can, too.
BigMoneyJim is offline   Reply With Quote
Old 08-10-2007, 09:45 PM   #4
Thinks s/he gets paid by the post
Spanky's Avatar
 
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
A more secured USB storage that is hardware encrypted: https://www.ironkey.com/.

Software based encryption can be hacked.

I use Truecrypt (AES 256) for most of my files.
Spanky is offline   Reply With Quote
Old 08-10-2007, 11:14 PM   #5
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Ed_The_Gypsy's Avatar
 
Join Date: Dec 2004
Location: the City of Subdued Excitement
Posts: 5,588
Quote:
For encrypting your files, try the free software called TrueCrypt.
Free for 30 days.
__________________
I have outlived most of the people I don't like and I am working on the rest.
Ed_The_Gypsy is offline   Reply With Quote
Old 08-11-2007, 08:40 AM   #6
Thinks s/he gets paid by the post
Coach's Avatar
 
Join Date: Nov 2005
Location: Colorado, USA
Posts: 1,127
I use PGP and have been very satisfied with it.

Coach
Coach is offline   Reply With Quote
Old 08-11-2007, 08:59 AM   #7
Administrator
Andy R's Avatar
 
Join Date: Jan 2007
Location: Dallas, Tx
Posts: 1,220
Quote:
Originally Posted by Ed_The_Gypsy View Post
Free for 30 days.
No, it's 100% free. It's an Open Source project so it will stay free too.
Quote:
Q: Will TrueCrypt be open-source and free forever? A: Yes, it will. We will never create a commercial version of TrueCrypt, as we believe in open-source and free security software.
TrueCrypt - Free Open-Source On-The-Fly Disk Encryption Software for Windows Vista/XP/2000 and Linux - FAQ
Andy R is offline   Reply With Quote
Old 08-11-2007, 10:12 AM   #8
Recycles dryer sheets
 
Join Date: Oct 2005
Posts: 325
Use PGP. Most of the PGP stuff is open source and its been tested by many, many people. Also its portable across platforms.

Here is a link for the PGP freeware stuff for windows:

http://www.pgpi.org/products/pgp/ver...are/winxp/8.0/
CybrMike is offline   Reply With Quote
Old 08-11-2007, 10:37 AM   #9
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
cute fuzzy bunny's Avatar
 
Join Date: Dec 2003
Location: Losing my whump
Posts: 22,708
I simplified the process, albeit its a half-way solution.

I keep any sensitive documents, account information and so forth in a password protected zip file on a small SD flash chip that sits in the reader on the side of the laptop but isnt fully snapped in. When I want something off of it, I push it in, type in the password, get the info, and eject it.

Pretty safe. Not too complex. Cheap. I figure the odds that someone will break in at exactly the 5 seconds I've got the chip inserted, or manage to leave some trojan horse on my machine that will grab that data...are pretty small.

By the way, did you know that encrypting data on your computer may be considered incriminating evidence, even if a law enforcement agency cannot determine the actual encrypted content? Seems that the mere matter of hiding something means you're hiding something bad...

Those "secure USB keys" are also fairly hackable. One common one has a 'backdoor password' thats already been published, and several can be physically tweaked to open access to the flash content.
__________________
Be fearful when others are greedy, and greedy when others are fearful. Just another form of "buy low, sell high" for those who have trouble with things. This rule is not universal. Do not buy a 1973 Pinto because everyone else is afraid of it.
cute fuzzy bunny is offline   Reply With Quote
My reccs....
Old 08-11-2007, 12:59 PM   #10
Recycles dryer sheets
 
Join Date: Dec 2006
Location: Florida
Posts: 249
My reccs....

I used to use Scramdisk but there is not a freeware versiono of this for XP.

I now use Dekart Private Disk Lite (Disk encryption - powerful disk encryption software from Dekart) and it seems to meet all my needs ... I want a utility to encrypt a virtual disk (appears as Z: to my PC). I don't know that this product does individual files. That is more PGP's bag. But it meets my needs -- standalone, disk drive level encryptor.
__________________
I've got nothing against an honest day's work, provided that someone else does it.
pedorrero is offline   Reply With Quote
Old 08-11-2007, 01:09 PM   #11
Recycles dryer sheets
 
Join Date: Oct 2005
Posts: 325
Well, good luck charging me on something when they can't even see what it is.

Long as you don't name the encrypted folder "MyEncryptedMurderPlot" or something....

Quote:
Originally Posted by cute fuzzy bunny View Post
By the way, did you know that encrypting data on your computer may be considered incriminating evidence, even if a law enforcement agency cannot determine the actual encrypted content? Seems that the mere matter of hiding something means you're hiding something bad...
CybrMike is offline   Reply With Quote
Old 08-11-2007, 01:26 PM   #12
Thinks s/he gets paid by the post
Spanky's Avatar
 
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
Quote:
Those "secure USB keys" are also fairly hackable. One common one has a 'backdoor password' thats already been published, and several can be physically tweaked to open access to the flash content.
This is not the case with IronKey (Hardware encryption). After a few failed attempts (incorrect password), the content will be self-destructed and will not be readable. The password, number of attempts, keys are not stored in flash. They are stored in the encryption chip. The drive is encased with a security potting compound (epoxy) that would crack easily during disassembly.
Spanky is offline   Reply With Quote
Old 08-11-2007, 01:28 PM   #13
Recycles dryer sheets
 
Join Date: Oct 2005
Posts: 325
Quote:
Originally Posted by Spanky View Post
This is not the case with IronKey (Hardware encryption). After a few failed attempts (incorrect password), the content will be self-destructed and will not be readable. The password, number of attempts, keys are not stored in flash. They are stored in the encryption chip. The drive is encased with a security potting compound (epoxy) that would crack easily during disassembly.
So, this message really will SELF DESTRUCT.
CybrMike is offline   Reply With Quote
Old 08-11-2007, 01:31 PM   #14
Recycles dryer sheets
 
Join Date: Oct 2005
Posts: 325
Problem I have with Secure USB or any other Secure Digital Card is that they are tough to backup. I use a secure image file on my Mac OS X machine that is encrypted to AES-128 with a password. That way you can just back up the entire image file to another hard drive and its still encrypted.
CybrMike is offline   Reply With Quote
Old 08-11-2007, 04:28 PM   #15
Thinks s/he gets paid by the post
Spanky's Avatar
 
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
Backing data in a secured USB drive is not that complicated. Copy the content after being mounted to another secured USB drive. If you want to backup the data to a hard drive with encryption, you can always create an encrypted volume in the form of file in the secured USB drive, access your files via the encrypted volume, and copy the encrypted volume (image or file) to your hard disk. This approach may be a hassle since you have mount the drive twice every time you want to access your files -- once to mount the USB drive and another to mount the encrypted volume. You also have to dismount it twice. Nevertheless, the data in the secured USB drive is pretty hard to crack.
Spanky is offline   Reply With Quote
Old 08-11-2007, 05:44 PM   #16
Recycles dryer sheets
 
Join Date: Jan 2006
Posts: 331
TrueCrypt is pretty awesome. Not only is the encryption in it top notch, but it has some nifty features. You can actually hide your encrypted volume inside another encrypted volume. This way, if you are ever "forced to reveal" your outer volume, the hidden one remains safe.

I keep all my financial data on a TrueCrypt encrypted USB key that I pop out when I'm not using it.
NinjaPigeon is offline   Reply With Quote
Old 08-11-2007, 07:08 PM   #17
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
cute fuzzy bunny's Avatar
 
Join Date: Dec 2003
Location: Losing my whump
Posts: 22,708
Quote:
Originally Posted by Spanky View Post
This is not the case with IronKey (Hardware encryption). After a few failed attempts (incorrect password), the content will be self-destructed and will not be readable. The password, number of attempts, keys are not stored in flash. They are stored in the encryption chip. The drive is encased with a security potting compound (epoxy) that would crack easily during disassembly.
Sure. Send me yours and i'll send you back your data in a couple of days...remember, i'm the guy that hacks apart safes in his garage in the middle of the night.
__________________
Be fearful when others are greedy, and greedy when others are fearful. Just another form of "buy low, sell high" for those who have trouble with things. This rule is not universal. Do not buy a 1973 Pinto because everyone else is afraid of it.
cute fuzzy bunny is offline   Reply With Quote
Old 08-11-2007, 08:05 PM   #18
Thinks s/he gets paid by the post
Spanky's Avatar
 
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
Quote:
Originally Posted by cute fuzzy bunny View Post
Sure. Send me yours and i'll send you back your data in a couple of days...remember, i'm the guy that hacks apart safes in his garage in the middle of the night.
Nothing is 100% tempered proof, but it will be very difficult to crack the hardware-based encryption protected USB drive such as Iron Key. It is more secured than software-based encryption. Another feature of Iron Key USB drive is that it is waterproof.
Spanky is offline   Reply With Quote
Old 08-11-2007, 08:11 PM   #19
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
cute fuzzy bunny's Avatar
 
Join Date: Dec 2003
Location: Losing my whump
Posts: 22,708
I'll take on that challenge. My dog has exceptionally wet lips.

Actually most USB drives are pretty easy to crack. I've seen several "solved" by opening the case and soldering a wire between two points, or cutting a couple of traces.

Certainly encasing it in epoxy creates a small problem for someone without an air compressor, a sand blasting tool and very fine particulate matter.

And you're taking all of this way too seriously...
__________________
Be fearful when others are greedy, and greedy when others are fearful. Just another form of "buy low, sell high" for those who have trouble with things. This rule is not universal. Do not buy a 1973 Pinto because everyone else is afraid of it.
cute fuzzy bunny is offline   Reply With Quote
Old 08-12-2007, 07:53 AM   #20
Full time employment: Posting here.
 
Join Date: Jan 2004
Posts: 851
Truecrypt...wow, never heard of it, but I downloaded it and took a look. Pretty amazing piece of (free) software. Seems bullet-proof to just about anyones normal privacy concerns (if you are hiding nuclear secrets and the NSA/CIA wants to find out then all bets are off), but for regular folks seems pretty solid; easy to use and very inconspicuous. The fact that it is opensource is good in the sense that there is no "back-door" into the system, unlike (I suspect) almost all commercial stuff.

Of course I suspect that 99.9% of the people that are using it are just hiding porn on their PC......
farmerEd is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
I just bought VFINX today AirJordan FIRE and Money 113 12-19-2007 07:17 AM
Who's watching the watchers? ladelfina Other topics 55 05-17-2007 11:29 PM
Is the S&P 500 the best data set to base our 4% SWR on? Dorus FIRECalc support 9 08-12-2006 01:12 AM
Historical Returns Data and Copyright BigMoneyJim FIRE and Money 4 10-06-2005 06:00 PM
Historical Index Data for Various Asset Classses Jerry235 FIRE and Money 5 09-11-2005 01:43 PM

» Quick Links

 
All times are GMT -6. The time now is 07:55 PM.
 
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2024, vBulletin Solutions, Inc.