Truecrypt http://truecrypt.sourceforge.net/ was my de-facto standard for full disk encryption. Its still installed on most of my boxes. I am about to do a refresh on most of my boxes.
What do you use instead of truecrypt?
Why do you trust it?
Do you use full disk encryption? if not why not?
Using BitLocker and/or Symantec Full Disk Encryption, but I freaking loved TrueCrypt.
what killed it? (or who?)
TrueCrypt developers terminated the development of the popular encryption
utility and announced that it was not safe to use,
started as a fork of the now-discontinued TrueCrypt
CipherShed is cross-platform; It will be available for Windows, Mac OS and
GNU/Linux.
The CipherShed project is open-source, meaning the program source code
is available
for anyone to view https://github.com/CipherShed/CipherShed. We encourage
everyone to examine and audit our code, as well as encourage new ideas and
improvements.
Without knowing why TrueCrypt stopped development and said the original code is unsafe.
its hard for me to trust a fork of the unsafe code.
The details on the truecrypt termination.
http://www.esecurityplanet.com/open-source-security/are-truecrypt-users-screwed.html
But I would go with an open source solution where full code audits are
possible and as result backdoors unlikely.
And at this time it looks like CipherShed is the way forward, but I have
not tested it and I don’t know if it is a high reliability solution.
The CipherShed website was still pretty opaque. I found a timeline, but no
info on where they’re at at the moment. I was also hoping to find some
details on implementation details, primitives, libraries, etc. That being
said, at least there’s an open source option.
It looks like there is critical flaws with TrueCrypt
If you are still using TrueCrypt then you should migrate to another solution. I have switched to https://veracrypt.codeplex.com/ and I been pretty happy with it. Veracrypt is based on TrueCrypt but has both of these security holes patched as well as active development.
They’re just privilege escalation vulnerabilities, which mean they’re only vulnerable to code running locally. If your computer is off, there’s still no practical way to decrypt it. But yeah, switch when you’re ready, and I’ve also heard that Veracrypt is a promising fork of it.