Go Back  FlyerTalk Forums > Travel&Dining > Travel Technology
Reload this Page >

Truecrypt compromised?

Register
Community
Wiki Posts
Today's Posts
Search
Vendor Directory

Truecrypt compromised?

Thread Tools
 
Search this Thread
 
Old Apr 3, 2015 | 5:46 pm
  #31  
GUWonder
Suspended
 
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 102,077
Originally Posted by Kagehitokiri
how much is not 'compromised' ?
https://opencryptoaudit.org/reports/...OCAP_final.pdf

You can try to make of that what you can.

Nowadays it seems that almost no one knows for sure what is not compromised.

One thing that we do know for sure is that encryption doesn't do a whole lot if you have weak passwords. For an idea on how to have strong passwords that are practical to remember without physical record of the password, look at the following:
https://firstlook.org/theintercept/2...rs-cant-guess/
Last edited by GUWonder; Apr 4, 2015 at 3:59 am
GUWonder is offline  
Reply
Old Oct 1, 2015 | 5:35 pm
  #32  
GUWonder
Suspended
 
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 102,077
http://motherboard.vice.com/read/enc...-vulnerability
GUWonder is offline  
Reply
Old Oct 1, 2015 | 7:25 pm
  #33  
above.the.clouds
 
Join Date: Sep 2015
Location: Seattle
Programs: SE100K (Star Gold)
Posts: 125
TrueCrypt is deprecated.
above.the.clouds is offline  
Reply
Old Oct 2, 2015 | 12:49 am
  #34  
nkedel
FlyerTalk Evangelist
30 Countries Visited
2M
All eyes on you!
25 Years on Site
 
Join Date: Jul 2000
Location: in the vicinity of SFO
Programs: AA 2MM (LT-PLT, PPro for this year)
Posts: 19,784
Originally Posted by above.the.clouds
TrueCrypt is deprecated.
Superseded by Veracrypt.
nkedel is offline  
Reply
Old Oct 2, 2015 | 4:52 pm
  #35  
javabytes
FlyerTalk Evangelist
30 Countries Visited
1M
All eyes on you!
15 Years on Site
 
Join Date: Apr 2009
Location: Bye Delta
Programs: AA EXP, UA Silver, HH Diamond, IHG Plat, Hyatt Plat, Marriott Titanium, Nat'l EE, Avis PC, Hertz PC
Posts: 16,635
Originally Posted by above.the.clouds
TrueCrypt is deprecated.
Originally Posted by nkedel
Superseded by Veracrypt.
Yes, but it doesn't mean people aren't still using it.
javabytes is offline  
Reply
Old Oct 2, 2015 | 7:01 pm
  #36  
nkedel
FlyerTalk Evangelist
30 Countries Visited
2M
All eyes on you!
25 Years on Site
 
Join Date: Jul 2000
Location: in the vicinity of SFO
Programs: AA 2MM (LT-PLT, PPro for this year)
Posts: 19,784
Originally Posted by javabytes
Yes, but it doesn't mean people aren't still using it.
I'm sure plenty are.
nkedel is offline  
Reply
Old Mar 30, 2016 | 6:02 pm
  #37  
GUWonder
Suspended
 
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 102,077
Originally Posted by javabytes
Yes, but it doesn't mean people aren't still using it.
You're right:

http://www.newyorker.com/news/news-d...ncryption-tool

And the above article has some other interesting stuff too.
GUWonder is offline  
Reply
Old Mar 31, 2016 | 2:58 pm
  #38  
greggarious
Suspended
 
Join Date: Sep 2013
Posts: 817
Veracrypt is based on TC code, and can open old TC volumes:

https://en.wikipedia.org/wiki/VeraCrypt
greggarious is offline  
Reply
Old Oct 22, 2016 | 5:55 am
  #39  
GUWonder
Suspended
 
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 102,077
Originally Posted by greggarious
Veracrypt is based on TC code, and can open old TC volumes:

https://en.wikipedia.org/wiki/VeraCrypt
VeraCrypt has some critical vulnerabilities. It will be interesting to see how quickly all of those identified (at this point) get fixed.

http://www.zdnet.com/article/veracry...ritical-flaws/

Note that some flaws in TrueCrypt were actually fixed with/by/for VeraCrypt.
GUWonder is offline  
Reply
Old Oct 23, 2016 | 10:00 am
  #40  
Janus
 
Join Date: Aug 2009
Location: DCA
Programs: DL Diamond, HH Diamond, Avis First
Posts: 555
Originally Posted by GUWonder
VeraCrypt has some critical vulnerabilities. It will be interesting to see how quickly all of those identified (at this point) get fixed.

http://www.zdnet.com/article/veracry...ritical-flaws/

Note that some flaws in TrueCrypt were actually fixed with/by/for VeraCrypt.
That article is very badly written. VeraCrypt had actually released an update addressing the audit two day prior to that article going live. And unlike what that article hints at, the remaining issues are not high-priority, but rather low risk bugs that require significant work to correct. Also, I don't believe anything the audit found would meet the industry-accepted definition of "Critical"; again another issues I have with that piece.

If anything, the fact that VeraCrypt is being audited is a good thing. TrueCrypt went years without an audit. Having critical crypto projects regularly audited is the only way to have any confidence in its security.
Janus is offline  
Reply



Advanced Search
Reply Closed Thread Share
Forum Jump

Contact Us - Archive - Advertising - Cookie Policy - Privacy Statement - Terms of Service -

This site is owned, operated, and maintained by MH Sub I, LLC dba Internet Brands. Copyright © 2026 MH Sub I, LLC dba Internet Brands. All rights reserved. Designated trademarks are the property of their respective owners.