problem with truecrypt // 'hidden volume' detectable
vedaal at hush.com
vedaal at hush.com
Tue Nov 8 23:41:42 CET 2005
a problem has been discovered with truecrypt in that it is possible
to
detect a 'hiiden volume'
(i.e. the 'plausible deniability' is *not* reliable)
i posted here recommending truecrypt
(http://lists.gnupg.org/pipermail/gnupg-users/2005-
October/027155.html)
for 'plausibile deniability'
so,
to anyone who may have used or is thinking about using,
truecrypt
for plausible deniability,
here is the description of the problems found
(from a thread on sci.crypt)
http://groups.google.com/group/sci.crypt/msg/a30ac58c279087f2?dmode=
source
and
http://groups.google.com/group/sci.crypt/msg/e42d12074436220d?dmode=
source
n.b.
there is no evidence of insecurity of the 'container' itself
and no attack on recovery of any files form within the container
the attack is only on the detectability of the 'hidden volume'
(also, it may be 'fixable' in an newer version)
vedaal
Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480
Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485
More information about the Gnupg-users
mailing list