[liberationtech] TrueCrypt Alternatives?
Eleanor Saitta
ella at dymaxion.org
Mon Oct 6 09:56:59 PDT 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 2014.10.06 01.56, Bill Cox wrote:
> I will have an impact on the code going forward. Also, I am
> entirely a pragmatist. I am an engineer, not a cryptographer, and
> I build stuff that works in the real world. Can you explain a
> deniable crypto-system that fits the real world?
It's unclear that there is one. I'd feel far happier recommending a
(new, continued development, audited, etc.) version of Truecrypt with
no deniability features at all. Using the features in such a way that
you don't leave traces of the container has always been really, really
difficult -- if you read the docs page on what's required to evade
forensic detection, it should be pretty clear how unsuitable this
feature is for regular users. Yes, some of those might be removable
with significant developer effort, but I'm not sure why that's worth
it, given the larger issues.
> I think we who are trying to keep TrueCrypt alive could use your
> advice.
Happy to chat more.
E.
- --
Ideas are my favorite toys.
-----BEGIN PGP SIGNATURE-----
iF4EAREIAAYFAlQyydsACgkQQwkE2RkM0wpV/QD/R+Iu4JCX/sp9/gOA+XF7oyts
p29Jw9tl3mT7Jbq2VvEBAJjUR+HB0Qmgfs/gFuHdhx1sJWdHa/qGpAg6xIU2Ouvl
=jcFs
-----END PGP SIGNATURE-----
More information about the liberationtech
mailing list