Personal computing discussed
Moderators: renee, Flying Fox, Ryu Connor
Aphasia wrote:http://www.dansdata.com/gz105.htmOhh, sneaker-net, rarely thought one employed such things anymore with the abundance in bandwidth.
JustAnEngineer wrote:Aphasia wrote:http://www.dansdata.com/gz105.htmOhh, sneaker-net, rarely thought one employed such things anymore with the abundance in bandwidth.
Rübenschwein wrote:Use Truecrypt with Full Disk Encryption, no containers or just partitions - ALL of it. Nothing else if you do not know EXACTLY what you are doing.
The problem with system partitions is that temporary data, i.e., part of your data in RAM can be stored on your hard disk. Among other things that can be files you want to protect or even the very keys an encryption software stores there. There are attacks against just this thing.
Folder encryption is generally a bad idea as there is again the issue with temporary data, also ANY trace of the before unencrypted data has to be wiped, not just 'deleted'. That includes any copies made to and from that encrypted folder during your normal work.
Further, only partially encrypted disks can be tampered with easily, think trojan horse, rootkit etc. and the presumably secure data thus copied and later decrypted when you type in the password.
Full disk encryption for data at rest it thus the only allowed method in any sensible security policy, company or government or whatever.
Cheers
This hard disk is being sent overseas to someone else who has a totally different system with totally different configuration.
Also a software named " Exlade Cryptic Disk " claims to simultaneously use more than one algorithms for extra security.
Rübenschwein wrote:Also a software named " Exlade Cryptic Disk " claims to simultaneously use more than one algorithms for extra security.
Not familiar with it, but it sounds a lot like snake oil and/or marketing talk.
JustAnEngineer wrote:Aphasia wrote:http://www.dansdata.com/gz105.htmOhh, sneaker-net, rarely thought one employed such things anymore with the abundance in bandwidth.
just brew it! wrote:Yup what you really want to do here is get an external hard drive, and copy the data to that in encrypted form. Don't send the OS system drive!
Usacomp2k3 wrote:How about something like this:
http://www.newegg.com/Product/Product.a ... 6822165299
bitcat70 wrote:Hello, this is Captain Obvious here: whatever you do make sure you have backups first.
dan99t wrote:I have extra internal HDD. Any advantage of getting external ?
Also my bigger concern is protecting data with the kind of encryption method that can't be cracked.
dan99t wrote:When you open Fully encrypted disk OR a Partition that is encrypted, is data now decrypted and act just like regular non encrypted data ?
Also if I copy some data from encrypted partion to another HDD or removable media, is that data in decrypted form & act like regular data ?
Also how vulnerable is the disk that was encypted but you opened it to work on it ?
dan99t wrote:just brew it! wrote:Yup what you really want to do here is get an external hard drive, and copy the data to that in encrypted form. Don't send the OS system drive!
I have extra internal HDD. Any advantage of getting external ?
dan99t wrote:Also my bigger concern is protecting data with the kind of encryption method that can't be cracked.
just brew it! wrote:dan99t wrote:just brew it! wrote:Yup what you really want to do here is get an external hard drive, and copy the data to that in encrypted form. Don't send the OS system drive!
I have extra internal HDD. Any advantage of getting external ?
Less chance of the drive getting damaged in shipping or re-installation in the system of the person you're shipping it to. You could also get just an enclosure and install the existing drive in it, effectively turning it into an external.dan99t wrote:Also my bigger concern is protecting data with the kind of encryption method that can't be cracked.
Well, *any* encryption can be cracked eventually, given enough resources. What sort of potential "bad guys" are you worried about here? Just run-of-the-mill information thieves? Or something bigger (e.g.government agencies with supercomputers and a staff of encryption experts at their disposal)? Any of the widely used current encryption tools, when used with a strong password, should give you adequate protection against the first type of threat. If you're dealing with the second type of threat, you've probably got bigger things to worry about than which encryption software you used...
just brew it! wrote:dan99t wrote:just brew it! wrote:Yup what you really want to do here is get an external hard drive, and copy the data to that in encrypted form. Don't send the OS system drive!
I have extra internal HDD. Any advantage of getting external ?
Less chance of the drive getting damaged in shipping or re-installation in the system of the person you're shipping it to. You could also get just an enclosure and install the existing drive in it, effectively turning it into an external.dan99t wrote:Also my bigger concern is protecting data with the kind of encryption method that can't be cracked.
Well, *any* encryption can be cracked eventually, given enough resources. What sort of potential "bad guys" are you worried about here? Just run-of-the-mill information thieves? Or something bigger (e.g.government agencies with supercomputers and a staff of encryption experts at their disposal)? Any of the widely used current encryption tools, when used with a strong password, should give you adequate protection against the first type of threat. If you're dealing with the second type of threat, you've probably got bigger things to worry about than which encryption software you used...