Get our Latest Finds
Subscribe to our RSS feed or enter your email address below to get the feed delivered to you by email:
Follow Gizmo
Using this Site
Top Rated
Gizmo's Freeware is Recruiting
We are currently looking for people with skills and/or interest in the following areas:
- Anonymous Surfing Service
- Antivirus for Android
If this sounds like you then click here for more details
Encryption is Not Enough
Keeping digital data private takes more than just encrypting the data.
Risks of using cryptographic software and possible ways of data leaks - a good overview that is similar to this analysis
Inconvenient fact #1: Encryption is harder than it looks: Not just any encryption program will do. You need expertly designed software. Not only the encryption algorithm itself, but the whole chain starting with password hashing. A recent highly visible example shows that it's hard to know who's expertise to trust. [discussion] [examples of cryptographic vulnerabilities]
Any encryption program can have bugs that are eventually discovered. Why would it be different from other software? It can also have a secret backdoor. With that in mind, here's what I look for when choosing an encryption program.
- The program must not rely on a proprietary encryption algorithm, but rather a time proven algorithm that has been extensively reviewed by the cryptographic community. Examples are AES (Rijndael), DES, Triple-DES, Twofish, and Serpent, and combinations of these used in cascade. But that's just the first hurdle.
- I'm highly skeptical of programs offered by individual authors. Encryption is naturally intriguing, but inexperienced implementation of public algorithms is almost always fatally flawed. In many cases, there are clear warning signs that these programs are not secure at all.
- I look for software that has been proven over time. The program should have been widely used for several years without being breached. Even though a new encryption program uses a time-proven algorithm, implementation of that algorithm is not proven.
- Open-source software is a better choice than closed-source software, particularly if it is actively used by commercial entities.
We need look no further than Microsoft to see the that the naive temptation to use proprietary, closed-source cryptology can lead to persistent folly:
Microsoft is especially infamous for that, as virtually each of its cryptographic solutions had serious vulnerabilities, often breakable in a trivial manner. One need not venture far for the examples, — Kerberos, encryption of Microsoft Office documents, PPTP VPN, NTLM authentication protocol, SysKey, EFS encryption in Windows 2000, RNG implementations in Windows 2000/XP/Vista. As history shows, that company is unable to learn on its own mistakes, therefore it is better to use anything, but the Microsoft's cryptography, since, even if you would want to, you will find no worse reputation, than the one enjoyed by the Microsoft.
Inconvenient fact #2: Operating systems are messy: They leave behind all sorts of echos of the data you access or process -- swap files, temp files, hibernation files, browser cache files, and other artifacts.
Windows Volume Shadow Copy Service presents a special problem. Even if you wipe the file after encrypting it the plain-text copy remains on the drive (and it's hidden). Even though it's hidden, it's easy enough to find and restore it.
Many simple encryption programs simply decrypt to a plain-text file. Yes, they may delete the plain-text file when you close the program, but they may not purge the file.
Using a compression -- e.g. Zip -- program for encryption can be particularly hazardous. Unless you can create, open and save files directly in the encrypted archive you'll leave clear-text version of files behind on the host computer. You must purge (not just delete) those working files. You did know that deleted files are not actually erased didn't you?
Thus anyone -- burglar, snatch thief, snoopy co-worker -- who gains access to your computer, running or not, could find clear-text echos of your encrypted data. If you don't have adequate physical security for your computer, you may want to use full disk encryption. Then those clear-text echos will be encrypted when your computer is off. Be sure your program also encrypts whole hard drive when your laptop lid is closed, not just when it is off.
Inconvenient fact #3: Most any competent programmer can grab the code for an encryption algorithm -- say AES -- and put together a user interface to control it. Unless they are a seasoned expert though, their encryption process will be fatally flawed by the naive implementation they develop. A good hacker can unlock most of those without much effort. As Bruce Schneier puts it in Security Pitfalls in Cryptography:
A cryptographic system can only be as strong as the encryption algorithms, digital signature algorithms, one-way hash functions, and message authentication codes it relies on. Break any of them, and you've broken the system. And just as it's possible to build a weak structure using strong materials, it's possible to build a weak cryptographic system using strong algorithms and protocols.
------------------
Just because an encryption program works doesn't mean it is secure. What happens with most products is that someone reads Applied Cryptography, chooses an algorithm and protocol, tests it to make sure it works, and thinks he's done. He's not.
------------------
Functionality does not equal quality, and no amount of beta testing will ever reveal a security flaw. Too many products are merely "buzzword compliant"; they use secure cryptography, but they are not secure.
Inconvenient fact #4: Full-drive encryption may seem like a better solution. It may not be. Current full-drive software is vulnerable to a simple attack if someone can gain (sequential) physical access to your computer. [Evil-maid attack]
Malware presents another threat: If any computer you access your data with is infected by spyware, the clear-text (decrypted) data can be transmitted to an exploiter over the Internet. Encryption doesn't do a thing for you in this case. Your security system (or lack thereof) has let you down.
One final worry: Your computer and/or storage devices may be subject to search. It may be better to not have your sensitive data with you if you're traveling by air. Consider storing your data in the cloud (online in encrypted form) or accessing it over a VPN when you need it.
Conclusions:
- It can be as important to protect your computer(s) from malware as it is to encrypt your data.
- If your sensitive data is on a computing device that is not always physically secure you need full disk encryption to be sure your sensitive data is not recovered from residual clear-text data.
- Device, folder or file encryption programs are adequate if you're merely transporting data on portable media, like CDs or DVDs, or storage devices, like external hard drives or USB thumb drives.
Note from the TrueCrypt manual:
"System [full disk] encryption provides the highest level of security and privacy, because all files, including any temporary files that Windows and applications create on the system partition (typically, without your knowledge or consent), hibernation files, swap files, etc., are always permanently encrypted (even when power supply is suddenly interrupted). Windows also records large amounts of potentially sensitive data, such as the names and locations of files you open, applications you run, etc. All such log files and registry entries are always permanently encrypted as well."
A fatal backup error:
Encryption programs that create encrypted "volumes" (files that contain encrypted files) do not change the size of the container file, and often intentionally do not change "date modified", even though files in the volume have been changed or added. The purpose is to maintain plausible deniability, but the result can be that your backup software does not recognize that the volume file has changed, and skips backing it up.
Information on full disk encryption:
- Risks of using cryptographic software and possible ways of data leaks - good overview
- 8 Reasons for Full Disk Encryption
- Bruce Schneier is a data-security expert, who recommends PGP Whole Disk Encryption program.
- full-disk-encryption.net
- Full-Disk Encryption Suites
- Comparison of disk encryption software
- Filesystem-level encryption
- Article type:
Printer-friendly version
Comments
If you are an English speaker ....
We don't permit discussion about the writing skills of our posters. This site is about exchanging information; it's not about grammar pedantry.
peter
Does anyone here have experience with full disk encryption of the system drive with Truecrypt? I'm using Cryptainer (Cypherix) on my data partitions and external drives for about 5 years without problems. I started using Truecrypt on my last external drive (+1TB) because cryptainer let you only make volumes of max 500GB. So far the Truecrypt vol and Crypt vol worked fine without conflicts. I'm thinking about encrypting my system drive as well with Truecrypt or any other encryption software. Any known problems with encrypting the system drive with Truecrypt ?
Your point is valid, Jonathan. Anyone can say they are an expert. You can only check by looking at their volume of work, and their reputation.
As an example, take Steve Gibson of GRC fame. Nine years ago his site (whichever one it was at the time, as the situation was fluid then) was the go-to site for firewall advice, tests, and recommendations. He was the guy who basically told us how to evaluate firewalls, and gave us the tests to help with that. He flagged up how useless Blackice Defender was, for example, and their cunning attempts to make their product look better simply by rigging the response of the application to tests instead of just fixing it (which they did a lot later).
However, later it was found that he had not been entirely honest in some of his other dealings, notably with customers for his ZoneAlarm Pro firewall (which was undoubtedly the best at that time - Agnitum Outpost etc came later).
So to evaluate SG's contribution you would have to balance those facts. Know your expert.
chris.p
The Vermin8tor asks: If an encryption program once installed,ie Compusec 4.0, installs an embedded rootkit detected by AVG Anti-rootkit,will this cause problems,or is it simply something not to worry about?
AVG is more than likely to identify software as a rootkit, even if it is perfectly benign, if it hooks into the operating system in the same manner that a malicious rootkit would. No doubt, that's what happened to you. You must decide if you trusted Compusec. If you did, then all that AVG has done is alert you with a false positive. Think of it as a question, not a statement that AVG makes about Compusec. Your response is what counts, not AVG's mechanistic message.
Cheers
Encryption puts up a red flag for Hackers who can get into your system and encrypt it so you can't access it.So wouldn't hiding your programs etc be better? Hiding them with a program that locks via a password?
Creating 1 partition with all your program files on that and then another, does it truly create a gap that no virus can jump over? or;
If you have 'created' C:\ partition and then a D:\,does it create a gap that 1 drive with infected program,can't jump over and infect the other? Or is this a myth?
Hiding things simply does not work much better than hiding your jewels in the back of you underwear drawer. You can only hide things from non-sophisticated searchers. Hiding files only makes them somewhat invisible via the specific instance of the operating system that was used to hide them.
Taking the hard drive out and examining it with another computer, even one running nominally the same operating system, will completely reveal any files that are not encrypted, even if they were "hidden".
Cheers
Sir,
first : for more discussion on drive encryption softwares see : www.sdean12.org .
second : is there any possiblity that some expert person(s) evaluate some encryption softwares that are freeware and are in use currently?
it would be ideal that somebody like b. schnier evaluate kruptos2, advanced blowfish cs ,AxCrypt ,truecrypt and freeOTFE .i asked Mr.schnier myself but he was not familiar with these programs exept for truecrypt that he wrote it is good because one of his trustable friends said it .
i think community is vulnerable by these shortcomings about abscence of independent and trustful reviews about these programs .
what do you think about this?
regards . adam
I've heard AxCrypt is supposedly quite good: http://www.wilderssecurity.com/showpost.php?p=1221853&postcount=5
It would be fantastic to have reviews from someone who knows the pitfalls of cryptogaphic software, and who can also read source code: Someone like Bruce Schneier or Sara Dean, but I don't know any experts myself. You've already asked Bruce about some programs, and Sarah wrote FreeOTFE, so she wouldn't be the one to review it. :-)
Sarah has reviewed E4M, Invincible Disk, and a whole bunch of not-free programs. I think I know enough to recognize that they are professional reviews. Besides those, TrueCrypt is the only free program for which I've found valid reviews online.
As with any security question, your choice of cryptography software is a balance between what you're willing to risk, and what you're willing to trust. Since this is a volunteer website, with no cryptographic experts, we have no way to improve trust beyond what we can discern online. Aside from TrueCrypt, that's not much for any of the free programs. ;-)
Cheers
I fully agree with Jonathan! This is my biggest concern with all forms of encryption. It is the "back door" that concerns me most. If you cannot keep the likes of the CIA out then why have encryption. I don't have a problem with security for financial transactions & I'm no axe murderer, I just simply don't trust them or any other corporation or government on the planet. Its as simple as that. So how can I best protect myself? When there is money to be made morality is gone.
I figured a way forward is when and if I don't want the CIA to know something I play off one government against the other. eg We all know China and America is the future / current cold war, so use Chinese written encryption software and visa versa to suite! No...not a good idea? Even here they can collaborate when it suites them, but at least it’s a better start. I'm sure there are other countries also not "conveniently" aligned with the western world like Malaysia etc. The only difficulty is getting this software & services written in english so I can use them...
Now there's a business in that isn't there?
I'm the author of this article on encryption. I just stumbled on these comments because I haven't been checking. I need some time to think about the questions raised. Meanwhile, please leave any other thoughts.
Update: I have updated this article to more clearly define the attributes that a trustworthy encryption program should have.
Cheers
Hi
I just realised, isn't disk encryption still encryption? So how is it not enough?
Thanks
The point was that file or partition encryption is what is not enough to protect you against anyone with physical access. So that's why you may need full disk encryption.
Cheers
Hi
OK. Thanks for the reply.
Hi
"It should also be open source software that has been examined by independent experts to make sure it doesn't hide any backdoor entry points."
Well I don't think this statement is entirely correct, a company which has closed-source software can build a good reputation and can be trusted, like PGP.
And how will people know who are the independent experts (I honestly don't know)? I mean couldn't anyone just say that they were an expert?
Thanks
Post new comment