Truecrypt developers and other encryption experts argue that you can't really trust a system once an attacker has had physical access to a machine. That basically means that if I ever leave my desktop at home I can no longer trust it. For example, when I come home from work someone could have installed an evil maid attack, making my fully encrypted system vulnerable. An adversary could also modify the bios to log all my keypresses. This brings me to a general question: What is a good strategy to employ, and maintain trust, in an encrypted desktop in a public place. Is it possible?