Originally posted by: Rainsford
Originally posted by: BlinderBomber
So I'm trying to figure out the best way to protect a lot of sensitive data that I have. I'd like to encrypt my USB key, but that seems foolish because then I need to download and install truecrypt to get access to the data.
I guess the best way around this is to use the portable install of truecrypt and stick it on the drive then encrypt the rest of the drive? The problem with that is it basically reveals that the drive is encrypted and what program was used to do it..
Actually, it just reveals you're using TrueCrypt for SOMETHING. If you create an encrypted container file on the rest of the thumb drive for storing your data, it is completely indistinguishable from a completely random file unless you have the passphrase used to encrypt it. There is NOTHING in TrueCrypt files to reveal they are TrueCrypt files unless you know the key. Someone could certainly guess that a large random file is an encrypted TrueCrypt container if you had TrueCrypt installed, but guessing is all they could do. And if you are really concerned, read up on TrueCrypt's "hidden volume" feature...it allows you to have a hidden TrueCrypt volume inside another TrueCrypt volume.
But don't get too caught up on this issue either. Protecting sensitive files with encryption is certainly reasonable under many circumstances, but most people don't really need deniable encryption. I'd think hard about whether this is a real problem before you try to solve it.