Cryptainer versus TrueCrypt

Discussion in 'privacy technology' started by n8chavez, Jan 31, 2008.

Thread Status:
Not open for further replies.
  1. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown
    I know there is an older thread on this issue but it was too old and I was not able to reply to it.

    Do most people still prefer TC as they did then. I ask because TC is great but the fact that it requires administrative privileges means that I cannot use it on a pyblic system with my flash drive. Does the same hold true for Cryptainer? Does their moble mode help with this issue?
     
  2. dantz

    dantz Registered Member

    Joined:
    Jan 19, 2007
    Posts:
    991
    Location:
    Hawaii
    I haven't used cryptainer in quite awhile, but according to their FAQ it sounds as though their mobile mode can't do what you want unless you pre-install a full version of Cryptainer on the host computer:

    snipped from:
    http://www.cypherix.co.uk/faqs/faqs_cryptainer.htm#admin

    "Can Cryptainer Mobile be installed without administrator privileges?

    Unfortunately this is not possible. Cryptainer runs as a process within the Windows framework. It needs be enabled as well be started up and shut down on request. It is necessarily constrained, by the overall Windows configuration, of the client machine.

    Please note that while Cryptainer Mobile cannot be used without Administrative Privileges, The full version (Cryptainer) can be installed on any machine, with or without Admin privileges."
     
  3. Fano effect3

    Fano effect3 Registered Member

    Joined:
    Jan 22, 2008
    Posts:
    37
    Location:
    Amsterdam, Holland
    I prefer Truecrypt over Cryptainer, because I only use encryption tools that are open source, for obvious reasons.


    Cypherix Software

    503, Buildage House, 146 VS Marg, Mahim
    Mumbai, Mah 400016 India

    No thanks....
    One of the reasons can be found here .
     
    Last edited: Jan 31, 2008
  4. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown
    I have a preinstalled version on my system. In fact, I just bought their PE version. What I'm talking about is similiar to TrueCrypt's 'traveler Mode'.

    I'm having a little trouble understanding what you mean here; these seem to be contradictory statements to me.
     
  5. LockBox

    LockBox Registered Member

    Joined:
    Nov 20, 2004
    Posts:
    2,275
    Location:
    Here, There and Everywhere
    You need admin privileges for both.

    The second part about "The full version (Cryptainer) can be installed on any machine, with or without Admin privileges" doesn't really make sense as you can configure the computer to not allow installations. The same would (obviously) apply to Truecrypt. If a PC is wide-open for anyone to install, you can install one or both.

    I'd go with TC over Cryptainer.
     
  6. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown
    That's a bummer. It look like I'll be ditching Cryptainer and be going back to Rohos Disk Encryption. It's a good thing there is a 30 day money back guarantee for Cryptainer.
     
  7. LockBox

    LockBox Registered Member

    Joined:
    Nov 20, 2004
    Posts:
    2,275
    Location:
    Here, There and Everywhere
    There are dangers with ROHOS and other software which basically decrypts to disk and then re-encrypts. You just as well use SecureZip, WinZip or something like that. It's all the same. The dangers with decrypting to disk is that you have to worry about Windows leaks and making sure the data on the disk is wiped after each and every use.
     
  8. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,302
    Location:
    Location Unknown
    Rohos is similar to TruCrypt in that it encrpts on the fly by volume and not by individual files, like programs such as Blowfish Advanced CS and Axcrypt. Why then would there be a danger in using Rohos?
     
  9. dantz

    dantz Registered Member

    Joined:
    Jan 19, 2007
    Posts:
    991
    Location:
    Hawaii
    Those weren't my words, I was just quoting from the Cryptainer FAQ that I posted the link to. But the gist of it is that if you don't have admin privileges on the host (i.e. the public) PC, you would have to install the full version of Cryptainer on that PC before you could use your Cryptainer Mobile encrypted flash drive with it.

    I would expect all on-the-fly portable encryption programs to require adminstrative privileges, since non-admins can't install the necessary device drivers. I'm surprised to hear that Rohos might be able to do it. Guess I'll have to look into it.

    All other decryption methods will probably require the intermediate step of first decrypting the files to disk and then reading them back into memory, which is a less secure method than reading the decrypted files directly into memory.

    However, the danger mainly lies elsewhere and not so much in the encryption scheme. Once you decrypt and open a file then it becomes exposed to whatever software is running on the host PC (i.e. the public PC) and thus it can easily be captured without your knowledge. If the PC is untrusted then there is no way you can use it to safely access confidential data, and this would still be the case even if you had encrypted the flash drive using TrueCrypt or Cryptainer. The main purpose of encrypting a flash drive is to protect your data in the event that the flash drive is lost or stolen, but this in no way prevents your data from being surreptitiously copied by a third party once you provide the password and open the encrypted device or container on an untrusted computer.
     
  10. LockBox

    LockBox Registered Member

    Joined:
    Nov 20, 2004
    Posts:
    2,275
    Location:
    Here, There and Everywhere
    Sorry, I missed this question on Friday. Any OTFE product that can be opened without admin privileges must decrypt to disk. Meaning, it's not true on-the-fly encryption. It's basically a compressed file (volume) and decompresses the needed files by actually writing them to your disk. If you use a USB flash drive, the files will decrypt to the flash drive. You then have a scenario where your files are in the clear - on the drive. The temporary files created must be wiped at the conclusion of each session without admin privileges. This is tricky with flash drives due to wear-leveling mechanisms. True OTFE that decrypts with admin privileges decrypts to memory. There's a big difference.

    By the way, I confirmed what they do by reading this page:
    http://rohos.com/desktop-security/rohos_disk_browser.htm
     
  11. chosenone

    chosenone Lurker

    Joined:
    Feb 19, 2008
    Posts:
    1
    Check this out
    BestCrypt Traveller software
    from jetico
     
  12. dantz

    dantz Registered Member

    Joined:
    Jan 19, 2007
    Posts:
    991
    Location:
    Hawaii
    snipped from http://www.jetico.com/bctraveller.htm:

    "Please note that the user should have administrating privileges to run BestCrypt Traveller software."
     
Loading...
Thread Status:
Not open for further replies.