Overclock.net › Forums › Software, Programming and Coding › Networking & Security › TrueCrypt vs Bitlocker Question
New Posts  All Forums:Forum Nav:

TrueCrypt vs Bitlocker Question - Page 2

post #11 of 15
Thread Starter 
Quote:
Originally Posted by fluxlite View Post

Be careful encrypting SSDs.
Most SSDs encrypt data before writing anyway, and as far as I know, encryption still messes with the wear levelling.

I never knew this... I will research it now - thanks for the heads up.
    
CPUMotherboardGraphicsHard Drive
8700K Z370 GAMING PRO CARBON AC 1080 Ti MSI Gaming X TRIO 1TB Samsung 840 EVO 
Hard DriveHard DriveCoolingMonitor
500GB Samsung 840 EVO 120GB Samsung 830 EVO NZXT Kraken X61 Crossover 2795QHD 
KeyboardPowerCaseMouse
Tesoro Durandel Ultimate Silverstone 1200W Strider Evolution Gold Phanteks Enthoo Primo Ultimate Roccat Kone XTD 
  hide details  
Reply
    
CPUMotherboardGraphicsHard Drive
8700K Z370 GAMING PRO CARBON AC 1080 Ti MSI Gaming X TRIO 1TB Samsung 840 EVO 
Hard DriveHard DriveCoolingMonitor
500GB Samsung 840 EVO 120GB Samsung 830 EVO NZXT Kraken X61 Crossover 2795QHD 
KeyboardPowerCaseMouse
Tesoro Durandel Ultimate Silverstone 1200W Strider Evolution Gold Phanteks Enthoo Primo Ultimate Roccat Kone XTD 
  hide details  
Reply
post #12 of 15
As far as I am aware, the only vulnerabilities of TrueCrypt come down to stupidity or user error.

TrueCrypt is regarded as one of the best if not the best way to secure your personal/bank/work info. If used right with a good long password, it's practically unbreakable.

Cheers
My Rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K ASUS P8Z68-V 2x EVGA GTX 580 SLI 8GB Ripjaws 
Hard DriveOptical DriveOSMonitor
1x WD Black 1TB 2x WD Green 2TB LITEON Sata DVD Burner Windows 7 Professional 64Bit 27" 
KeyboardPowerCaseMouse
MS X4 CORSAIR HX 1000W HAF932 Deathadder 3g 
Mouse Pad
None 
  hide details  
Reply
My Rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K ASUS P8Z68-V 2x EVGA GTX 580 SLI 8GB Ripjaws 
Hard DriveOptical DriveOSMonitor
1x WD Black 1TB 2x WD Green 2TB LITEON Sata DVD Burner Windows 7 Professional 64Bit 27" 
KeyboardPowerCaseMouse
MS X4 CORSAIR HX 1000W HAF932 Deathadder 3g 
Mouse Pad
None 
  hide details  
Reply
post #13 of 15
Quote:
Originally Posted by yawnbox View Post

[tin-foil-hat] "We have been able to provide police, law enforcement, and private investigators with a tool that allows bypassing BitLocker encryption for seized computers.” source: http://www.thetechherald.com/articles/New-software-will-break-BitLocker-encryption/8538/ [/tin-foil-hat]

I read through their site. All Passware does is brute-force passwords. They also try to grab the keys from memory if the computer is still powered on (known as the Cold Boot Attack and is nothing new). They specifically say on their site that if the PC is powered completely down, the best they can do is brute force the password. I don't care what method they use, if the password is a good 20 chars long with various character types, they ain't getting in. So, essentially, Passware is a piece of overpriced software that can do the same thing as many free tools on the Internet. But they are dealing with LEA's so I guess they figure they can easily take their money.

If I were the OP, I would use Truecrypt. It is the best cross-platform FDE software out there. Most importantly it is open-source and has been vetted. It also supports the AES-NI instruction available on Intel and AMD Bulldozer processors.

Let me add one thing. No FDE software can save you if an attacker has snuck into your house, tampered with your machine and then left before you reboot the machine. He could have planted a hardware keylogger or messed with the bootloader (evil maid attack). Essentially if an attacker has ever gotten a hold of your machine on the physical level, you should never trust it until you have fully wiped the drive and analyzed the hardware. There is nothing FDE can do to protect you from that (any FDE). FDE can only protect you when:

1) No attacker has ever had physical access to your machine while you were not around.

2) When your machine is powered off.

If your machine is powered off AND no attacker has had access to it previously, you are safe. Truecrypt will be his worst nightmare in that scenario.
Edited by thiussat - 5/10/12 at 1:52am
Skylake Build
(12 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5-6600k Gigabyte Z-170 Gaming 7 Gigabyte R9 390  Gskill Ripjaws V DDR4 
Hard DriveCoolingOSMonitor
Samsung 850 Evo Corsair H115i Windows 10 Pro Asus  
KeyboardPowerCaseMouse
Generic EVGA NEX750 G1 Phanteks Eclipse P400 GSkill MX780 
  hide details  
Reply
Skylake Build
(12 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5-6600k Gigabyte Z-170 Gaming 7 Gigabyte R9 390  Gskill Ripjaws V DDR4 
Hard DriveCoolingOSMonitor
Samsung 850 Evo Corsair H115i Windows 10 Pro Asus  
KeyboardPowerCaseMouse
Generic EVGA NEX750 G1 Phanteks Eclipse P400 GSkill MX780 
  hide details  
Reply
post #14 of 15
Thread Starter 
I went with Trucrypt and used key files on all my drives smile.gif
    
CPUMotherboardGraphicsHard Drive
8700K Z370 GAMING PRO CARBON AC 1080 Ti MSI Gaming X TRIO 1TB Samsung 840 EVO 
Hard DriveHard DriveCoolingMonitor
500GB Samsung 840 EVO 120GB Samsung 830 EVO NZXT Kraken X61 Crossover 2795QHD 
KeyboardPowerCaseMouse
Tesoro Durandel Ultimate Silverstone 1200W Strider Evolution Gold Phanteks Enthoo Primo Ultimate Roccat Kone XTD 
  hide details  
Reply
    
CPUMotherboardGraphicsHard Drive
8700K Z370 GAMING PRO CARBON AC 1080 Ti MSI Gaming X TRIO 1TB Samsung 840 EVO 
Hard DriveHard DriveCoolingMonitor
500GB Samsung 840 EVO 120GB Samsung 830 EVO NZXT Kraken X61 Crossover 2795QHD 
KeyboardPowerCaseMouse
Tesoro Durandel Ultimate Silverstone 1200W Strider Evolution Gold Phanteks Enthoo Primo Ultimate Roccat Kone XTD 
  hide details  
Reply
post #15 of 15
Quote:
Originally Posted by fluxlite View Post

Be careful encrypting SSDs.
Most SSDs encrypt data before writing anyway, and as far as I know, encryption still messes with the wear levelling.
Quote:
Originally Posted by Milamber View Post

I never knew this... I will research it now - thanks for the heads up.

Encryption shouldn't be a real problem unless you are using a Sandforce drive, or a drive without much spare area.

Sandforce is pretty slow with encrypted data, and some consumer drives are pretty light on spare area, in which case you can just make the encrypted partition smaller than full disk size, ideally after secure erasing the whole drive first.
Primary
(15 items)
 
Secondary
(13 items)
 
In progress
(10 items)
 
CPUMotherboardGraphicsRAM
5820K @ 4.2/3.5GHz core/uncore, 1.175/1.15v Gigabyte X99 SOC Champion (F22n) Gigabyte AORUS GTX 1080 Ti (F3P) @ 2025/1485, 1... 4x4GiB Crucial @ 2667, 12-12-12-28-T1, 1.34v 
Hard DriveHard DriveHard DriveCooling
Plextor M6e 128GB (fw 1.06) M.2 (PCI-E 2.0 2x) 2x Crucial M4 256GB 4x WD Scorpio Black 500GB Noctua NH-D15 
OSMonitorKeyboardPower
Windows 7 Professional x64 SP1 BenQ BL3200PT Filco Majestouch Tenkeyless (MX Brown) Corsair RM1000x 
CaseMouseAudio
Fractal Design Define R4 Logitech G402 Realtek ALC1150 + M-Audio AV40 
CPUMotherboardGraphicsRAM
X5670 @ 4.4/3.2GHz core/uncore, 1.36 vcore, 1.2... Gigabyte X58A-UD5 r2.0 w/FF3mod10 BIOS Sapphire Fury Nitro OC+ @ 1053/500, 1.225vGPU/1... 2x Samsung MV-3V4G3D/US @ 2000, 10-11-11-30-T1,... 
RAMHard DriveHard DriveHard Drive
1x Crucial BLT4G3D1608ET3LX0 @ 2000, 10-11-11-3... OCZ (Toshiba) Trion 150 120GB Hyundai Sapphire 120GB 3x Hitachi Deskstar 7k1000.C 1TB 
CoolingOSPowerCase
Noctua NH-D14 Windows 7 Pro x64 SP1 Antec TP-750 Fractal Design R5 
Audio
ASUS Xonar DS 
CPUMotherboardGraphicsRAM
i7-6800K @ 4.3/3.5GHz core/uncore, 1.36/1.2v ASRock X99 OC Formula (P3.10) GTX 780 (temporary) 4x4GiB Crucial DDR4-2400 @ 11-13-12-28-T2, 1.33v 
Hard DriveHard DriveCoolingOS
Intel 600p 256GB NVMe 2x HGST Travelstar 7k1000 1TB Corsair H55 (temporary) Windows Server 2016 Datacenter 
PowerCase
Seasonic SS-860XP2 Corsair Carbide Air 540 
  hide details  
Reply
Primary
(15 items)
 
Secondary
(13 items)
 
In progress
(10 items)
 
CPUMotherboardGraphicsRAM
5820K @ 4.2/3.5GHz core/uncore, 1.175/1.15v Gigabyte X99 SOC Champion (F22n) Gigabyte AORUS GTX 1080 Ti (F3P) @ 2025/1485, 1... 4x4GiB Crucial @ 2667, 12-12-12-28-T1, 1.34v 
Hard DriveHard DriveHard DriveCooling
Plextor M6e 128GB (fw 1.06) M.2 (PCI-E 2.0 2x) 2x Crucial M4 256GB 4x WD Scorpio Black 500GB Noctua NH-D15 
OSMonitorKeyboardPower
Windows 7 Professional x64 SP1 BenQ BL3200PT Filco Majestouch Tenkeyless (MX Brown) Corsair RM1000x 
CaseMouseAudio
Fractal Design Define R4 Logitech G402 Realtek ALC1150 + M-Audio AV40 
CPUMotherboardGraphicsRAM
X5670 @ 4.4/3.2GHz core/uncore, 1.36 vcore, 1.2... Gigabyte X58A-UD5 r2.0 w/FF3mod10 BIOS Sapphire Fury Nitro OC+ @ 1053/500, 1.225vGPU/1... 2x Samsung MV-3V4G3D/US @ 2000, 10-11-11-30-T1,... 
RAMHard DriveHard DriveHard Drive
1x Crucial BLT4G3D1608ET3LX0 @ 2000, 10-11-11-3... OCZ (Toshiba) Trion 150 120GB Hyundai Sapphire 120GB 3x Hitachi Deskstar 7k1000.C 1TB 
CoolingOSPowerCase
Noctua NH-D14 Windows 7 Pro x64 SP1 Antec TP-750 Fractal Design R5 
Audio
ASUS Xonar DS 
CPUMotherboardGraphicsRAM
i7-6800K @ 4.3/3.5GHz core/uncore, 1.36/1.2v ASRock X99 OC Formula (P3.10) GTX 780 (temporary) 4x4GiB Crucial DDR4-2400 @ 11-13-12-28-T2, 1.33v 
Hard DriveHard DriveCoolingOS
Intel 600p 256GB NVMe 2x HGST Travelstar 7k1000 1TB Corsair H55 (temporary) Windows Server 2016 Datacenter 
PowerCase
Seasonic SS-860XP2 Corsair Carbide Air 540 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › TrueCrypt vs Bitlocker Question