BestCrypt Volume Encryption v.2.10.01 / TrueCrypt / Drivecrypt

Discussion in 'privacy technology' started by guest, Aug 12, 2008.

Thread Status:
Not open for further replies.
  1. guest

    guest Guest

    which is the good?
    Truecrypt want stop the pagefile, i dont like this.
    Drivecrypt has no new updates since 2007
    BestCrypt is very slow, isnt?
    your preview?
     
  2. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    318
    You do not have to disable the page file when you use TrueCrypt, they recommend you do to avoid a minor glitch that could happen occasionaly when shutting down your computer.
    They say the shutdown will close all open files and programs correctly but on rare occasions may crash at the last moment before the computer shuts off. As all files are already flushed to disk by this time it will cause no lose of data but a minor inconvenience as you may have to use the off button to close down the computer.
    This is only an issue if you use TrueCrypt to encrypt your system partition and I would imagine it is something that they will fix pretty soon.
    You can avoid this altogether by configuring Windows to clear the paging file everytime it shuts down. For information on this refer to: http://support.microsoft.com/kb/314834
    The other answer may be to load up your system with as much RAM as it can take and disable the page file. Most people would never need a page file at all if they have 4GB RAM
    Also I think it is worth mentioning, if you are using Vista, Windows Vista is designed to operate more efficiently if you use Hibernate rather than Shutdown, your computer will start up a lot faster from hibernate than from a cold boot, and the TrueCrypt shutdown issue does not occur with hibernate.
     
  3. KookyMan

    KookyMan Registered Member

    Joined:
    Feb 2, 2008
    Posts:
    367
    Location:
    Michigan, USA
    Actually, you have it backwards. The pagefile issue only affects systems that are not using system encryption, because when you do use it, everything that is written to disk is encrypted, including the pagefile.
     
  4. gb63

    gb63 Registered Member

    Joined:
    Jan 19, 2008
    Posts:
    34
    Location:
    USA
    The problem does appear to affect some system-encrypted units.

    See the section Known Issues & Limitations at: http://www.truecrypt.org/docs/
    They then propose possible workarounds:
    Re: Drivecrypt Plus Pack No updates for some time, but it does work fine. I have one system using DCPP for over two years with never any error or problem.

    Re: Bestcrypt The current best commercial package with all new features ( some which TrueCrypt provided first ). I have tested the very latest version and do not notice any speed problem. Before posting this, I just opened a video editor on a large avi and editing was acceptable.

    However, I personally recommend TrueCrypt. I know the swapfile problem can be solved - the DCPP machine is system-encrypted including swap and there has never been a BSOD.
     
  5. KookyMan

    KookyMan Registered Member

    Joined:
    Feb 2, 2008
    Posts:
    367
    Location:
    Michigan, USA
    From the TC Docs:

    The page your quoting from, is the Known Issues and is not referring to a vulnerability in data being left in the swap file (which is encrypted) but referring to the fact that if there is data left in the swap file during shut down, at the point in which TC wipes the Master Key from memory, Windows is no longer able to access that memory (Because it is encrypted), and will result in a blue screen error.

    Also, in the future, if you include a URL for reference, please use the URL of the actual page (like I did), and not just the front page of the Docs.

    Oh, and a lot of people never have a problem with the blue screen on shutdown. Its probably configuration dependent.
     
  6. NeilC

    NeilC Registered Member

    Joined:
    Jan 3, 2008
    Posts:
    31
    Truecrypt doesn't WANT to stop the pagefile it just suggests you do when using it for general encrypted volume usage (i.e. not full O/S system encryption). The reason it does this is because obviously the pagefile gets filled up with non-encrypted information as part of it's normal duties and that could potentially mean you expose info you don't want to. All volume encryption and indeed many other types of security have this weakness - it's a Windows weakness.

    You can get around it very easily by various options:

    1. You can encrypt your entire system so nothing can be read without the
    password, including all system files.
    2. You can have some program securely erase the pagefile on close-down.
    3. You can use the freeware Cryptoswap Guerilla to encrypt your pagefile on the fly.
    4. You can turn off the pagefile.

    By far the most secure is option 1 because it's not like the pagefile is your only weakness. Various programs store various bits of info all over the place and you simply cannot learn about them all. If that doesn't suit then I'd say 3. is probably the most practical if you don't like 4.

    Bestcrypt has cryptoswap as part of it's suite which tells you that it has the same potential vunerability.

    Truecrypt is the best option IMO. It's free, stable, very fast, constantly update, open source and constantly scrutinised by privacy nuts.

    I've been using it for ages and it just gets better and faster. I don't notice any performance difference between it and my non-encypted drive.
     
  7. berdinkerdickle

    berdinkerdickle Registered Member

    Joined:
    Sep 17, 2008
    Posts:
    2
    Thank you so much for this thread!

    I have been searching all over.
    First off, I can't do a Full System Encrypt. (boot camp)
    I was leaning toward TrueCrypt, but wasn't happy with disabling my Paging File because I use memory intensive apps.
    So I wanted a Paging File Encryption option, so that was leaning me toward BestCrypt.

    So if you guys can tell me if Cryptoswap Guerill is a reliable and stable option then I am definitely going with TrueCrypt.

    Thanks Again
     
  8. KookyMan

    KookyMan Registered Member

    Joined:
    Feb 2, 2008
    Posts:
    367
    Location:
    Michigan, USA
    You don't have to disable TrueCrypt. Its suggested (and TC does it by default but you can deselect that option) because it does plug a possible security breach. I'm sure the same security risks are existent for any OTFE.
     
  9. Long View

    Long View Registered Member

    Joined:
    Apr 30, 2004
    Posts:
    2,295
    Location:
    Cromwell Country
    I would like to take a look at TrueCrypt for a system with 2 drives C: Windows Xp and programs and D: data

    I do have 2 concerns:

    (1) I use Shadow Protect to image both C: and D:
    (2) I use Shadow Defender to protect drives when surfing

    will these 2 programs still work ? or would one of the other programs be preferable ?
     
Loading...
Thread Status:
Not open for further replies.