Jump to content
Login new information ×
Login new information

good full partition encryption

asf

By asf
in Software Chat

Recommended Posts

asf

asf

Posted
Posted

Hi there

i have some files that i don't want anyone with access to my computer to be able to view/read/execute/etc...

what i did until now was i removed the drive letter from the partition and created a shortcut with the volume ID and with that i accessed the partition,

but what i want is that even after i pressed on the shortcut, or if someone removes the hard drive and inserts it into a different PC, or adds a device letter that i/he shouldn't be able to access the files without a password

so does anyone have any good ideas to do this, or could anyone please recommend a good full partition encryption software? (that works also when trying to access the partition through the volume id)

thanks in advance

Link to comment
Share on other sites
  • Replies 14
  • Views 1.3k
  • Created
  • Last Reply
perlinpinpin

perlinpinpin

Posted
Posted

VeraCrypt seems like it would be a good choice for what you are wanting to do.

It is possible to encrypt even if you have data on the hard drive or it is better (safety !) to have the drive empty ?

Thanks for advice, I don't have experience with encryption. Are they risks of corruption ? (e.g. you encrypt a partition and after you can't read your documents)

Link to comment
Share on other sites
straycat19

straycat19

Posted
Posted

The advantage of VeraCrypt is you would have two bootable partitions that load based upon the preboot authentication password. So you could have one without any of your files on it for others to use and one that boots with your files. That partition is not seen by users of the other partition. Encrypted containers on the other hand are easy to decrypt with forensic software. VeraCrypt is the closest freeware to SecurStar DriveCrypt PlusPack, which is what I use because it even includes the ability to destroy your hidden files permanently with a third password.

Link to comment
Share on other sites
HX1

HX1

Posted
Posted

PGP Encryption Desktop ( now known as Symantec Encryption Desktop ) is a good option.. offers military grade encryption of the entire Disk.. or Partition.. creation of Encrypted Virtual Disks...Encrypted Network shares. You can also create and register Keys to unlock.. and Passwords as well.. ( Being dual with Key needed and Password, either/or ), and Encrypted self-executable EXE, or Compressed and individual files.. Portable version for USB Drives as well to mount and decrypt on systems without installation, and Email capabilities. Also comes with a shredder, but remember that thermite destruction is the only true and has to be eloquently in order to accomplish complete destruction.

BTW do not double encrypt..

I have used this program for over 12 years now... It is great, should give it a spin.. Look for version 10.3.1.. Many good options and control in this program.

Link to comment
Share on other sites
hawk007

hawk007

Posted
Posted

PGP Encryption Desktop ( now known as Symantec Encryption Desktop ) is a good option.. offers military grade encryption of the entire Disk.. or Partition.. creation of Encrypted Virtual Disks...Encrypted Network shares. You can also create and register Keys to unlock.. and Passwords as well.. ( Being dual with Key needed and Password, either/or ), and Encrypted self-executable EXE, or Compressed and individual files.. Portable version for USB Drives as well to mount and decrypt on systems without installation, and Email capabilities. Also comes with a shredder, but remember that thermite destruction is the only true and has to be eloquently in order to accomplish complete destruction.

BTW do not double encrypt..

I have used this program for over 12 years now... It is great, should give it a spin.. Look for version 10.3.1.. Many good options and control in this program.

"Military Grade Encryption" is a total nonsense. Its nothing but a marketing BS to attract average persons who know nothing about cryptology. This term is used for marketing "Snake Oil" cryptography products. It is the fact that, even the hardest to break encyption algorithm can be broken easily due to its poor implementation methodology.

https://www.schneier.com/crypto-gram/archives/1999/0215.html#snakeoil

https://mattfisher.wordpress.com/2011/12/29/we-use-military-grade-encryption/

https://www.quora.com/Cryptography/How-is-military-grade-encryption-defined

PGP was good once, but due to recent NSA scandal regarding backdoors in almost all closed source software, the world is no longer have the belief in the giants like Microsoft, Symantech, Google & their encryption products. To do business in USA, they have to make intentional backdoors & provide them to NSA / other government agencies.

So, what is left? only the open source. The codes can be verified for looking in backdoors or other weaknessess whether built into it or not.

Link to comment
Share on other sites
  • Administrator
DKT27

DKT27

Posted
  • Administrator
Posted

I wish protecting a drive would have been as easy as inserting the Windows username / password, with that feature being built-in into the Windows and it also being unlockable from SMB protocol and softwares using it.

Link to comment
Share on other sites
hawk007

hawk007

Posted
Posted

I wish protecting a drive would have been as easy as inserting the Windows username / password, with that feature being built-in into the Windows and it also being unlockable from SMB protocol and softwares using it.

Then either go to Veracrypt or DiskCryptor. My bet is the in latter, though I was a longtime user of Truecrypt (the base of Veracrypt). SSD benchmark shows better performance of DiskCrptor than Veracrypt when using the same encryption algorithm.

http://blog.alexou.net/truecrypt-vs-diskcryptor-on-ssd-windows-7-fd

On the other hand, Veracrypt gives you the possibility to use Encrypted containers, what is missing in Diskcryptor.

PS. Nobody can protect you from, once the HDD is fully decrypted (ie. PC is booted; but full protection while in sleep). Cause, full disk encryption system works this way. You provided your right password, the disk is dycrpted transparently.

Link to comment
Share on other sites
asf

asf

Posted
  • Author
Posted

thanks for all the reply's sorry i'm only replying now i was quit busy until now

what it seems is that i didn't elaborate that i'm talking about the non-system partition

for a conclusion there is quite a few choices

1. VeraCrypt

2. Diskcryptor

3. Symantec Encryption Desktop

could someone please help me choose by these options that i need

1. i don't need anything powerful just enough for a simple person (not IT) not to be able to open it without password

2. it should ask for a password even when accessing through volume ID (not just write "Access Is Denied" like bitlocker)

thanks in advance

Link to comment
Share on other sites
asf

asf

Posted
  • Author
Posted

This is your System partition or Non-system partition?

non-system partition

Link to comment
Share on other sites
hawk007

hawk007

Posted
Posted

Then go with Diskcryptor. This is the ultimate choice of mine these days for strong protection, smaller overhead & don't deteriorate the performance that other encrypters do.

But remember, both DiskCrptor & Veracrypt don't yet support to boot from UEFI + GPT system partition (no issue with nonsystem partion though). To make their boot loaders for those system, you have to convert them MBR partition table before encrypting.

Mode of action of on the fly encrypters:

For non-system partition: Decryption done transparently by drivers after OS load.

For System Partition: Decryption done transparently by boot-loaders during OS load.


could someone please help me choose by these options that i need

1. i don't need anything powerful just enough for a simple person (not IT) not to be able to open it without password

2. it should ask for a password even when accessing through volume ID (not just write "Access Is Denied" like bitlocker)

thanks in advance

Sorry, both veracrypt & diskcryptor don't support this. you have to manually mount them whenever needed. After dismount, the drive will be visible, but upon accessing, a format option will be popped from windows explorer; as windows have no idea about the Encrypted File System. Then, you may try PGP Disk, but have no idea, whether that support is available or not.

Link to comment
Share on other sites
asf

asf

Posted
  • Author
Posted

Then go with Diskcryptor. This is the ultimate choice of mine these days for strong protection, smaller overhead & don't deteriorate the performance that other encrypters do.

But remember, both DiskCrptor & Veracrypt don't yet support to boot from UEFI + GPT system partition (no issue with nonsystem partion though). To make their boot loaders for those system, you have to convert them MBR partition table before encrypting.

Mode of action of on the fly encrypters:

For non-system partition: Decryption done transparently by drivers after OS load.

For System Partition: Decryption done transparently by boot-loaders during OS load.

could someone please help me choose by these options that i need

1. i don't need anything powerful just enough for a simple person (not IT) not to be able to open it without password

2. it should ask for a password even when accessing through volume ID (not just write "Access Is Denied" like bitlocker)

thanks in advance

Sorry, both veracrypt & diskcryptor don't support this. you have to manually mount them whenever needed. After dismount, the drive will be visible, but upon accessing, a format option will be popped from windows explorer; as windows have no idea about the Encrypted File System. Then, you may try PGP Disk, but have no idea, whether that support is available or not.

thanks i figured that already out (before you wrote it) as i tried to use veracrypt an realized that that's not what i'm looking for

i'm looking for something like bitlocker but with one function more it works even when trying to access the volume through it's i'd (unlike bitlocker) (i hope this isn't different of what i wrote until now)

thanks

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...