I don't want to change the subject here, but I have to mention why I use Truecrypt above all the spin offs. Despite it being abandonware, it still does its job, that is encrypt your data. Yes, there are some flaws found, but those pertain to an encrypted computer that is ON. Well, that simple fact is true for any computer that's been encrypted and is on for any hacker to snatch your keys. So long as my data is protected while off, I'm good to go. I read an article that the FBI contacted Truecrypt to have a computer decrypted and the Devs told them they couldn't. Not even the FBI could decrypt a computer using Truecrypt. I shouldn't mention that in the public domain, but there it is. It's true.
https://steve.grc.com/2014/05/30/yes-virginia-truecrypt-is-still-safe-to-use/
Second, I donated to the Truecrypt audit and followed the website. Besides some sloppy code everything checks out. I don't want to use a spinoff encryption until it too has been audited. Which I doubt due in part that the forks are illegal.
https://lists.freedesktop.org/archives/distributions/2008-October/000276.html
I watched the DEFCON presentation about the Truecrypt audit and they are suppose to audit SSL/TLS next, but I haven't heard much about it.
Now I'm going to go into the Twilight Zone here and risk being marked as paranoid. And perhaps give the FBI a possible solution (if they're reading) to get inside an encrypted computer. A little story if you will. To make a long story short I'll just say I knew a woman that happened to have the gift of being a "physic." Yes, I said "physic." She demonstrated her skills to me by placing her hands on my laptop and telling me to THINK of my ATA password. At the time I wasn't using FDE. She typed away and got right past the boot screen for the ATA password. I'm living proof and I seen it with my own eyes. Yes, that may sound absolutely like BS, but I gotta tell you, it's true. Now the FBI tip. If they want into a FDE comp. hire a good "physic." Not all are who they claim to be, but there are people out there with "the gift." Believe you me. If I were an agent I'd make the physic look as though they were working for the FBI. Shake hands with the perp and try to read him. Just a thought.
Here's something interesting.
https://www.youtube.com/watch?v=TSkYqs7Gyxo
https://www.youtube.com/watch?v=Fkyov63FnWQ
Anyway... LOL I'm not suppose to use FDE using the Internet, but I'm confidante enough and the way I run my ship I don't have to worry all that much. I sandbox my work environment, use NoScrip and take many other precautions. The TC manuals specifically states not to use FDE with an Internet connection and if you get the right type of malware it's game over. Seen as how I'm not hiding trade secrets or some crap it's not a huge factor for me. I just want pretty good security just in case one of my computer's are stolen. And if the Feds knock on the door, well, good luck I guess. LOL I plead the 5th of Jack your honor.
Facebook
Twitter