Jump to content

TrueCrypt, is it still safe?

NickB
By NickB
in Operating Systems
 Share
Go to solution Solved by LAwLz,

The TrueCrypt audit did not discovery any backdoors or design flaws that would have a major impact on the security.

So yes, it is still considered safe.

 

The recommendation of BitLocker on TrueCrypt's sourceforge page is a joke or a warning in disguise.

 

If you are worried about TrueCrypt then you might want to use VeraCrypt. It's a fork of TrueCrypt.

Posted

On the TrueCrypt website, it says that it isn't safe to use the program anymore. Is this true?

TrueCrypt is a discontinued source-available freeware utility used for on-the-fly encryption. It can create a virtual encrypted disk within a file or encrypt a partition or the entire storage device

 

Straight out of google.

Not safe.

Link to post
Share on other sites
Posted

On the TrueCrypt website, it says that it isn't safe to use the program anymore. Is this true?

Well, what are you using it for? Truecrypt is not safe because its discontinued therefore no new security patches

My Build: Phoenix

Processor: Intel i7 4770k, Motherboard: Asus Z97-P RAM: Corsair Dominator Platinum 16GB GPU: MSI GTX 1050TI OC Case: Corsair ICUE 4000X, Storage: Samsung 840 EVO 120GB + 500GB + 2TB HDD PSU: Corsair RM750, Cooling: Corsair H100i Capellix, 

                                                                                           If you want to talk to me or give me an answer, please tag me otherwise you'll be talking to thin air ❤️

Link to post
Share on other sites
Posted

Possibly Cracked TrueCrypt Account At The Center Of Stolen Military Documents Case:

But the nexus point for this stash of military documents was TrueCrypt.

Glenn read up on the art of espionage and used an elaborate encryption system, TrueCrypt, with a decoy computer drive to distract investigators from another hidden drive that he protected with a complex 30-character password, army counterintelligence expert Gerald Parsons testified.

The FBI's counterintelligence squad in South Florida was able to crack Glenn's code, Parsons said.

Parsons said he didn't know how the FBI agents did it but he estimated it would have taken "billions" of years to crack the code using traditional methods.

This should be a bit concerning for TrueCrypt users. Either Glenn's password was cracked (rather than TrueCrypt's encryption) or the questions raised about the predictability of the random-number generator behind the encryption method have some validity. Because "traditional methods" would still be underway -- at least according to the expert presented by the prosecutors -- something else had to give. The most likely explanation is that Glenn gave up his password or had it trapped by a keylogger or other government surveillance software. The FBI has tried to crack TrueCrypt's encryption before and had no luck.

That isn't definitive proof that it's insecure though...

Project Night Owl Build Log
Link to post
Share on other sites
Posted
  • Solution

The TrueCrypt audit did not discovery any backdoors or design flaws that would have a major impact on the security.

So yes, it is still considered safe.

 

The recommendation of BitLocker on TrueCrypt's sourceforge page is a joke or a warning in disguise.

 

If you are worried about TrueCrypt then you might want to use VeraCrypt. It's a fork of TrueCrypt.

Link to post
Share on other sites
Posted

I don't believe it, that's all. Bitlocker is bull. I'm trying to protect my files from windows, so why would I want to use THEIR software to do that.

If you want to protect your files from windows/Microsoft the only way is not to use Microsoft products.

Link to post
Share on other sites
Posted
  • Author

If you want to protect your files from windows/Microsoft the only way is not to use Microsoft products.

Windows is the only OS I like, I do what I can to make it secure and private though.

Mac is too easy and simple to use and Linux is time consuming in terms of modding it.

Link to post
Share on other sites
Posted

I don't believe it, that's all. Bitlocker is bull. I'm trying to protect my files from windows, so why would I want to use THEIR software to do that.

Uh, well, bitlocker is secure to use. If you think otherwise, then encrypt your disks, go do something terroristic, let the FBI and homeland security find you, and see if they can decrypt your drives.

If they can, then you have confirmed Microsoft has a backdoor in their encryption to allow that to happen, and it'll spill all kinds of shit for Microsoft.

If they can't, well you were wrong and RIP. 

Link to post
Share on other sites
Posted
  • Author

Uh, well, bitlocker is secure to use. If you think otherwise, then encrypt your disks, go do something terroristic, let the FBI and homeland security find you, and see if they can decrypt your drives.

If they can, then you have confirmed Microsoft has a backdoor in their encryption to allow that to happen, and it'll spill all kinds of shit for Microsoft.

If they can't, well you were wrong and RIP.

Haha ok, but the main reason I want to use TrueCrypt is because of Linus' video. I just need some projects I've been working on to stay safe from some hacker that has been threatening me to steal my work.

Linus' video: http://youtu.be/FzzP3m1m2dg

Link to post
Share on other sites
Posted
  • Author

Naive? Has it been proved to be crack able? Or that there's a backdoor in it? Or is it all speculation? It's currently the most widely accepted encrypting method for Enterprise.

But it doesn't have many options. Like the volume creation option on TrueCrypt.

Bitlocker encrypts an entire drive, I believe.

Link to post
Share on other sites
Posted

Naive? Has it been proved to be crack able? Or that there's a backdoor in it? Or is it all speculation? It's currently the most widely accepted encrypting method for Enterprise.

Microsoft is a company located in the united States of America.

Link to post
Share on other sites
Posted
  • Author

True, that is where you weigh your options.

 

Yes, Bitlocker is the full drive encryption.

I mean, I could encrypt a flash drive, but I loose those way too often. I'll see if I can use the version that came out before the last version that killed TrueCrypt from GitHub.

Link: https://github.com/AuditProject/truecrypt-verified-mirror?files=1

Link to post
Share on other sites
Posted
  • Author

As far as I know all TrueCrypt does is encrypt your files with a specified password, this means there's probably some Rijndael (aka AES) going on with a salted & hashed key based upon your password.

In layman's terms:

It puts a specific lock on your files, depending on what manufacturer (encryption method) you choose, the key for this lock is forged eith security in mind, and is based upon your password.

Right, but they have been getting problems. Their website is redirecting you to another site that tells you to use Bitlocker. I refuse to though so I'm planning on downloading an old version from Github and see what happens.

Link to post
Share on other sites
Posted

That is a fact. But, you haven't answered my question.

And?

You never heard of https://en.wikipedia.org/wiki/Edward_Snowden and https://en.wikipedia.org/wiki/Global_surveillance_disclosures_(2013–present)

Unbelievable...

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Operating Systems

×