Best Free Drive Encryption Utility

 
In a Hurry?
  Go straight to the Quick Selection Guide
Introduction

The two main classes of encryption software:

1. File encryption software: Used to encrypt files, folders, or full drives or partitions, but not drives or partitions that contain an active operating system.

2. Full drive encryption software: Used to encrypt drives (partitions or full disks) that contain active operating systems. This later category is reviewed on this page.

Note: Full drive encryption software modifies the boot sector of the active drive. On boot, the first step for an encrypted drive is to start a micro-system that decrypts the drive so that the operating system can continue. That means you may not be able to use full drive encryption, and also dual-boot your computer without special boot management software.

Cautionary Notes:

1. Data security is harder than you may think. There are many pitfalls that even experienced computer users face when it comes to keeping personal data private, particularly when using a mobile computer (e.g., laptop).

2. Operating systems are messy. They leave behind all sorts of echos of the data they access or process -- swap files, temp files, hibernation files, erased files, browser artifacts, etc. That's why you need full disk/drive encryption software to be sure that you are protecting the data on your portable computer.

See Encryption is Not Enough for further information on what else you need to do beyond encryption to be sure your private data is not lost or exposed.

Discussion

Compusec screenshot

FREE Compusec is specifically designed to protect desktops and notebooks, using pre-boot authentication and full hard disk encryption. Access control requires you to enter your userID and password before the system will boot up. Free Compusec is free for both personal and business use.

FREE Compusec includes other utilities. You can encrypt individual files, CDs, DVDs, USB thumb drives, and other removable media. However, the full-disk encryption must be installed as part of any configuration.

TrueCrypt screenshotTrueCrypt is a top-rated, open-source general encryption program. As of version 5.0, TrueCrypt can also encrypt Windows boot partitions or entire boot disks. It includes support for secure hibernation.

Newbies might find TrueCrypt a bit daunting at first. However, more experienced users who want serious full drive encryption will find it to be a solid program. Randy Jensen wrote an illustrated guide that will give you a good idea of how to encrypt your entire hard drive.

Related Products and Links

BitLocker, built in to Enterprise and Ultimate versions of Windows Vista, allows user to encrypt their Windows disk/partition as well as other disks or partions. While it's a solid solution, it may not be easy to deploy it on your computer.

Best Free File Encryption Utility
Best Free Encryption Utility for Personal Use at Work

Encryption is Not Enough
Full disk encryption - Wikipedia
How Does Bruce Schneier Protect His Laptop Data?

Quick Selection Guide

FREE CompuSec    Rating 8 of 10  Gizmo's Top Pick

Pros   Pre boot access control. Encryption in hibernation mode. Includes optional utilities for encryption of files, "containers", voice, thumb drives. Free Compusec is free for both personal and business use.
Cons   You won't be able to use standard methods for double-booting if you install this software.
Developer Home Page   http://www.ce-infosys.com/english/index.html
Download link   http://www.ce-infosys.com/english/downloads/free_compusec/index.html
File Size   20.3 MB   Version 5.2.0.0   License Type Unrestricted Freeware   Installation Requirements Supports all Windows OS with 32-bit editions (Windows Vista, Windows XP, Window 2003, Window XP Tablet Edition & Windows 2000). Linux version available too

TrueCrypt    Rating 8 of 10

Pros   A seasoned, widely-used encyption program. TrueCrypt's open source status allows the all-important peer review of the source code required for a trustworthy encryption program.
Cons   It takes some time to learn how to use TrueCrypt if you've never used any sort of encryption program before.
Developer Home Page   http://www.truecrypt.org/
Download link   http://www.truecrypt.org/downloads.php
File Size   3.0 MB   Version 6.2   License Type Open Source Freeware (includes program code)   Installation Requirements Windows Vista/XP/2000; Mac OS X; Linux
64 Bit version available   64 Bit version available   Portable version available Portable version available
Info   As of version 5.0, TrueCrypt can encrypt the Windows boot partition or the entire boot disk.
3.833335
Average: 3.8 (6 votes)
Your rating: None

in CompuSec pdf manual, specifically on page 2, the supported operating systems are:

ƒ Windows 2000 with Service Pack 4
ƒ Windows XP Professional Edition with Service Pack 2
ƒ Windows 2003 Advanced Server
ƒ Windows Vista

where is windows xp home in all of this? did anybody install it successfully on a windows home xp system?

I would suggest using [b]only peer reviewed open source[/b] encryption software eg, FreeOTFE, TrueCrypt etc. Some might remember the Swiss encryption company scandal wherein it was belatedly discovered that backdoors had been written into their closed source proprietary software.

FREE CompuSec is an outstanding product for the average user, especially for laptop owners.

http://www.ce-infosys.com/english/downloads/free_compusec/

That's weird, I didn't supply a link!?

The magic of moderation!

Hmm.. maybe such "moderation" would be better served by updating some of these articles; and making their recommendations less skewed towards the advanced, rather than the average user? ;-)

We are very conscious of the update problem, and have just recruited a whole slew of new Editors in an effort to improve the situation. You could help by applying to be one.
I'm afraid we'll always disagree about the categorization of "average" and "advanced". We aim to help ALL users. Our Forum provides speedy individual help to any user.

I found this companion article helpful (also linked above):

Encryption is Not Enough, http://www.techsupportalert.com/content/encryption-not-enough.htm

It's extremely clearly written.

Truecrypt 6.2 has been released.
http://www.truecrypt.org/news

I use FreeOTFE to create a 1.5 GB volume. When I transfer around 1 GB files to the volume, it takes me more than 3 hours! I take the default options to create volume. If anyone konws there are some options to transfer files quickly, I would love to know.

Must be something wrong with your setup - it does it in a fraction of the time on all of the systems I use it on.

I've used TrueCrypt to create 4 GB volumes and transferred 700 MB to them at one time without experiencing long transfer times.

Cheers

With TrueCrypt you can encrypt your Windows partition and still have the option of booting to a Linux partition.

Good to know Anon. That probably means that along with GRUB or LILO, other boot managers can multi-boot multiple operating systems under TrueCrypt, even though the Windows boot-system can't. Some boot managers might even handle more than one Windows partition, in addition to Linux. :-)

Cheers

Truecrypt 6.1a is out and starting with version 6 TC gives you the ability to create a hidden system volume with it's own operating system (the ability to create a hidden volume in non-system volumes was present even before version 6, but the ability to create a hidden system volume enhances the utility of TC even more.

According to the TrueCrypt website, 64 bit OS's are supported.

TrueCrypt can currently encrypt the following operating systems:
Windows Vista
Windows Vista x64 (64-bit) Edition
Windows XP
Windows XP x64 (64-bit) Edition
Windows Server 2008
Windows Server 2008 x64 (64-bit)
Windows Server 2003
Windows Server 2003 x64 (64-bit)

Thanks for the update Anon.

While I agree TrueCrypt is a great bit of kit to have on your PC/USB, I found another one recently which is so simply and easy to use, as well as small in size, that I really am impressed by it no end!  It comes from "Jetico", who's stable includes the following..

..all of which have been around for some time, and come in various different versions.  But the program I want to bring to your attention here is called "BestCrypt Traveller"..which is a small freeware version of it's big brother.  It comes in a single small .exe file, that will allow you to store it on a USB or your PC/LapTop and, once there, it can be used to set up and use a virtual drive, complete with drive letter, which is password protected and holds any number of files, folders..or both, as long as their total combined size is not greater than the size of the drive you originally created.

The program, when in use, sits in your system tray in the form of a little icon that, when clicked on, offers a pop-up menu from which you creat/mount/dismount the drive in question.  When not in use, the drive and the files/folders it containes, like all virtual drives, still resides on your system or USB, but is invisible to both you and other parties until it is mounted..at which time it appears in the lists of drives on your system.

Overall..for design, ease of use and usefulness, I give it "10 out of 10"

 

hi,

i use both truecrypt and freeOTFE by sarah dean . i think freeOTFE has more options to work with , and is more flexible than truecrypt.

i wish someone expert evaluate these good programs.

www.sdean12.org
www.freeOTFE.org

www.truecrypt.org

regards . adam

It's an elegant little program but it should not be named "Traveller" because you can only mount the encrypted container if you have administrator privilege on the host computer. The only truly portable encryption program that I have found is Remora USB Guard, but it encrypts and decrypts on a file-by-file basis (even if you choose to encrypt a whole folder) and is too painfully slow to use as protection for a whole USB flash drive.

If anyone knows of a utility like BC Traveller or Portable Vault that doesn't require administrator privilege on the host, I would love to know about it.

You can use TrueCypt in combination with TCExplorer.
http://www.codeproject.com/KB/files/TCExplorer.aspx
It will allow you to mount truecrypt volums (fat formated) without administrator privileges.

Wonderful program. 5 stars

A worthy alternative to TrueCrypt is Free Compusec, a product from German security specialist CE Infosys.
Free Compusec is a complete security suite including drive encryption,file encryption, secure VOIP and more. It is the full product and is completeley free (even for business use!). Only support and global deployment and administration software (for companies) is not free.

http://www.ce-infosys.com/english/downloads/free_compusec/index.html

I would agree that Compusec is is quite worthy of mention... while I have been a TrueCrypt user for a while I wanted something that would encrypt my system drive as well. It does mean that I can't multiboot from my laptop drive but if [or possibly when] it gets ripped off I will have little concern for the "unwanted recovery" of any data that is on it.

I think the latest version of TC can encrypt the Windows system partition: http://www.truecrypt.org/docs/?s=system-encryption

My main objection to CompuSec is its statement that you can't use other boot loaders or partitioning software with it. Otherwise, its ability to encrypt the entire system disk is indeed attractive (especially for a laptop).

- bill

This objection is only valid for system drive encryption. The same goes for all the other programs (including Truecrypt), as the encryption/decryption program must start before the OS, i.e. in the bootloader part of the hard drive. That's why you cannot have both system drive encryption and third-party bootlader. They would use same place on the hard drive...

Post new comment

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <b> <address> <blockquote> <br> <caption> <center> <code> <dd> <del> <div> <dl> <dt> <em> <font> <h2> <h3> <h4> <h5> <h6> <hr> <i> <img> <li> <ol> <p> <pre> <span> <strong> <sub> <sup> <table> <tbody> <td> <tfoot> <th> <thead> <tr> <u> <ul> <tr>
  • Lines and paragraphs break automatically.
  • [node:123] - insert full text (themed by theme('node'))
    [node:123 body] - insert node's body
    [node:123 teaser] - insert node's teaser
    [node:123 link] - insert link to node
    [node:123 collapsed] - insert collapsed node's body
  • You may use [view:viewname] tags to display listings of nodes.

More information about formatting options