|
|
08-10-2007, 08:08 PM
|
#1
|
Confused about dryer sheets
Join Date: Apr 2007
Posts: 2
|
Data encryption software
I've been looking into buying encryption software, such as one might use on highly private documents, e.g. a list ones financial account/website user names and passwords. Not just to use for emailing the documents, but for general protection from any hackers that might attack my computer. (I wonder if paranoia is attacking me. )
Usually I can find current & thorough reviews on PC Magazine website, but no luck in this case.
Anyone have experience or recommendations for this type of software?
Thanks.
|
|
|
|
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!
Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that Early-Retirement.org is a great community to join. Best of all it's totally FREE!
You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!
|
08-10-2007, 08:21 PM
|
#2
|
Administrator
Join Date: Jan 2007
Location: Dallas, Tx
Posts: 1,220
|
For encrypting your files, try the free software called TrueCrypt. This is good for files on your hard drive (or even on a portable USB drive) if you change computers often.
If you want to keep your passwords organized and safe try RoboForm. This is a serious time saver and smart tool to allow you to have different long cryptic passwords at different site and it manages them and fills them in when you go to that site. All the data files for RoboForm are encrypted.
|
|
|
08-10-2007, 08:22 PM
|
#3
|
Thinks s/he gets paid by the post
Join Date: Feb 2003
Location: Nomadic in the Rockies
Posts: 2,720
|
If you have Windows XP Pro (not "Home"), you have encryption capability built-in: http://support.microsoft.com/kb/307877 . I haven't used it.
Some of the zip utilities have password protection and/or encryption. The original zip password is crackable, and last I heard the encryption schemes weren't portable across brands (WinZip vs. PKZip, for example).
I'm sure there are several free open source encryption software packages, but I haven't used them and would venture a guess that they're a bit more complex to use and/or learn than the commercial products.
What I *do* have recent experience in is Utimaco SafeGuard Easy, but that encrypts an entire hard disk and doesn't protect in the event that you are "hacked"--that is if someone can log into your system then they can read your files. The advantage is if the hard drive is lost or stolen then they can't read the data without knowing how to log into your system.
I also have an encrypted USB storage stick. Kingston Dataguard I believe is the one I have. When you put it in you have to enter a password, and then the drive becomes available.
With any encryption method, be aware that if you lose or forget the password/passkey then you file will be unrecoverable. With Windows native encryption you have to be careful in how you change your password, otherwise you may be unable to decrypt your files. And if the system itself is compromised then anything you type could be recorded and your password captured, and in any system if you can currently read the file then a system administrator on the system can, too.
|
|
|
08-10-2007, 09:45 PM
|
#4
|
Thinks s/he gets paid by the post
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
|
A more secured USB storage that is hardware encrypted: https://www.ironkey.com/.
Software based encryption can be hacked.
I use Truecrypt (AES 256) for most of my files.
|
|
|
08-10-2007, 11:14 PM
|
#5
|
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
Join Date: Dec 2004
Location: the City of Subdued Excitement
Posts: 5,588
|
Quote:
For encrypting your files, try the free software called TrueCrypt.
|
Free for 30 days.
__________________
I have outlived most of the people I don't like and I am working on the rest.
|
|
|
08-11-2007, 08:40 AM
|
#6
|
Thinks s/he gets paid by the post
Join Date: Nov 2005
Location: Colorado, USA
Posts: 1,127
|
I use PGP and have been very satisfied with it.
Coach
|
|
|
08-11-2007, 08:59 AM
|
#7
|
Administrator
Join Date: Jan 2007
Location: Dallas, Tx
Posts: 1,220
|
Quote:
Originally Posted by Ed_The_Gypsy
Free for 30 days.
|
No, it's 100% free. It's an Open Source project so it will stay free too.
Quote:
|
|
|
08-11-2007, 10:12 AM
|
#8
|
Recycles dryer sheets
Join Date: Oct 2005
Posts: 325
|
Use PGP. Most of the PGP stuff is open source and its been tested by many, many people. Also its portable across platforms.
Here is a link for the PGP freeware stuff for windows:
http://www.pgpi.org/products/pgp/ver...are/winxp/8.0/
|
|
|
08-11-2007, 10:37 AM
|
#9
|
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
Join Date: Dec 2003
Location: Losing my whump
Posts: 22,708
|
I simplified the process, albeit its a half-way solution.
I keep any sensitive documents, account information and so forth in a password protected zip file on a small SD flash chip that sits in the reader on the side of the laptop but isnt fully snapped in. When I want something off of it, I push it in, type in the password, get the info, and eject it.
Pretty safe. Not too complex. Cheap. I figure the odds that someone will break in at exactly the 5 seconds I've got the chip inserted, or manage to leave some trojan horse on my machine that will grab that data...are pretty small.
By the way, did you know that encrypting data on your computer may be considered incriminating evidence, even if a law enforcement agency cannot determine the actual encrypted content? Seems that the mere matter of hiding something means you're hiding something bad...
Those "secure USB keys" are also fairly hackable. One common one has a 'backdoor password' thats already been published, and several can be physically tweaked to open access to the flash content.
__________________
Be fearful when others are greedy, and greedy when others are fearful. Just another form of "buy low, sell high" for those who have trouble with things. This rule is not universal. Do not buy a 1973 Pinto because everyone else is afraid of it.
|
|
|
08-11-2007, 12:59 PM
|
#10
|
Recycles dryer sheets
Join Date: Dec 2006
Location: Florida
Posts: 249
|
My reccs....
I used to use Scramdisk but there is not a freeware versiono of this for XP.
I now use Dekart Private Disk Lite ( Disk encryption - powerful disk encryption software from Dekart) and it seems to meet all my needs ... I want a utility to encrypt a virtual disk (appears as Z: to my PC). I don't know that this product does individual files. That is more PGP's bag. But it meets my needs -- standalone, disk drive level encryptor.
__________________
I've got nothing against an honest day's work, provided that someone else does it.
|
|
|
08-11-2007, 01:09 PM
|
#11
|
Recycles dryer sheets
Join Date: Oct 2005
Posts: 325
|
Well, good luck charging me on something when they can't even see what it is.
Long as you don't name the encrypted folder "MyEncryptedMurderPlot" or something....
Quote:
Originally Posted by cute fuzzy bunny
By the way, did you know that encrypting data on your computer may be considered incriminating evidence, even if a law enforcement agency cannot determine the actual encrypted content? Seems that the mere matter of hiding something means you're hiding something bad...
|
|
|
|
08-11-2007, 01:26 PM
|
#12
|
Thinks s/he gets paid by the post
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
|
Quote:
Those "secure USB keys" are also fairly hackable. One common one has a 'backdoor password' thats already been published, and several can be physically tweaked to open access to the flash content.
|
This is not the case with IronKey (Hardware encryption). After a few failed attempts (incorrect password), the content will be self-destructed and will not be readable. The password, number of attempts, keys are not stored in flash. They are stored in the encryption chip. The drive is encased with a security potting compound (epoxy) that would crack easily during disassembly.
|
|
|
08-11-2007, 01:28 PM
|
#13
|
Recycles dryer sheets
Join Date: Oct 2005
Posts: 325
|
Quote:
Originally Posted by Spanky
This is not the case with IronKey (Hardware encryption). After a few failed attempts (incorrect password), the content will be self-destructed and will not be readable. The password, number of attempts, keys are not stored in flash. They are stored in the encryption chip. The drive is encased with a security potting compound (epoxy) that would crack easily during disassembly.
|
So, this message really will SELF DESTRUCT.
|
|
|
08-11-2007, 01:31 PM
|
#14
|
Recycles dryer sheets
Join Date: Oct 2005
Posts: 325
|
Problem I have with Secure USB or any other Secure Digital Card is that they are tough to backup. I use a secure image file on my Mac OS X machine that is encrypted to AES-128 with a password. That way you can just back up the entire image file to another hard drive and its still encrypted.
|
|
|
08-11-2007, 04:28 PM
|
#15
|
Thinks s/he gets paid by the post
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
|
Backing data in a secured USB drive is not that complicated. Copy the content after being mounted to another secured USB drive. If you want to backup the data to a hard drive with encryption, you can always create an encrypted volume in the form of file in the secured USB drive, access your files via the encrypted volume, and copy the encrypted volume (image or file) to your hard disk. This approach may be a hassle since you have mount the drive twice every time you want to access your files -- once to mount the USB drive and another to mount the encrypted volume. You also have to dismount it twice. Nevertheless, the data in the secured USB drive is pretty hard to crack.
|
|
|
08-11-2007, 05:44 PM
|
#16
|
Recycles dryer sheets
Join Date: Jan 2006
Posts: 331
|
TrueCrypt is pretty awesome. Not only is the encryption in it top notch, but it has some nifty features. You can actually hide your encrypted volume inside another encrypted volume. This way, if you are ever "forced to reveal" your outer volume, the hidden one remains safe.
I keep all my financial data on a TrueCrypt encrypted USB key that I pop out when I'm not using it.
|
|
|
08-11-2007, 07:08 PM
|
#17
|
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
Join Date: Dec 2003
Location: Losing my whump
Posts: 22,708
|
Quote:
Originally Posted by Spanky
This is not the case with IronKey (Hardware encryption). After a few failed attempts (incorrect password), the content will be self-destructed and will not be readable. The password, number of attempts, keys are not stored in flash. They are stored in the encryption chip. The drive is encased with a security potting compound (epoxy) that would crack easily during disassembly.
|
Sure. Send me yours and i'll send you back your data in a couple of days...remember, i'm the guy that hacks apart safes in his garage in the middle of the night.
__________________
Be fearful when others are greedy, and greedy when others are fearful. Just another form of "buy low, sell high" for those who have trouble with things. This rule is not universal. Do not buy a 1973 Pinto because everyone else is afraid of it.
|
|
|
08-11-2007, 08:05 PM
|
#18
|
Thinks s/he gets paid by the post
Join Date: Dec 2004
Location: Minneapolis
Posts: 4,455
|
Nothing is 100% tempered proof, but it will be very difficult to crack the hardware-based encryption protected USB drive such as Iron Key. It is more secured than software-based encryption. Another feature of Iron Key USB drive is that it is waterproof.
|
|
|
08-11-2007, 08:11 PM
|
#19
|
Give me a museum and I'll fill it. (Picasso) Give me a forum ...
Join Date: Dec 2003
Location: Losing my whump
Posts: 22,708
|
I'll take on that challenge. My dog has exceptionally wet lips.
Actually most USB drives are pretty easy to crack. I've seen several "solved" by opening the case and soldering a wire between two points, or cutting a couple of traces.
Certainly encasing it in epoxy creates a small problem for someone without an air compressor, a sand blasting tool and very fine particulate matter.
And you're taking all of this way too seriously...
__________________
Be fearful when others are greedy, and greedy when others are fearful. Just another form of "buy low, sell high" for those who have trouble with things. This rule is not universal. Do not buy a 1973 Pinto because everyone else is afraid of it.
|
|
|
08-12-2007, 07:53 AM
|
#20
|
Full time employment: Posting here.
Join Date: Jan 2004
Posts: 851
|
Truecrypt...wow, never heard of it, but I downloaded it and took a look. Pretty amazing piece of (free) software. Seems bullet-proof to just about anyones normal privacy concerns (if you are hiding nuclear secrets and the NSA/CIA wants to find out then all bets are off), but for regular folks seems pretty solid; easy to use and very inconspicuous. The fact that it is opensource is good in the sense that there is no "back-door" into the system, unlike (I suspect) almost all commercial stuff.
Of course I suspect that 99.9% of the people that are using it are just hiding porn on their PC......
|
|
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
Thread Tools |
|
Display Modes |
Linear Mode
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
|
» Recent Threads
|
|
|
|
|
|
|
|
|
|
|
|
|
» Quick Links
|
|
|