Truecrypt users here?

You don't use decimal points to define your volume size. Just whole numbers.





AES is the fastest encryption among the choices. However, I prefer "Whirlpool" for hash algorithm using the dropdown menu.

No decimals but you could choose to use KB instead of MB.
512KB = .5MB
You will also see the often truecrypt rounds up the number you choose. It works in standard block sizes so if your asked number falls short of that it will round up.

Appreciate the help. Thanks 1492
Washington, DC for the recommendation. The program is easy to use. I tried the truecrypt users forum but they don't allow a free email address which is all I have :(

The TC forum got inundated with trolls a while back so they blocked users with "free" addresses.

As for encryption, for normal stuff, AES is good enough. If I am storing stuff on a cloud provider (where I assume anyone on the Internet can copy the TC volume and try to crack it open at their leisure), I'll use a three algorithm cascade and a keyfile. That way, there is no brute force password that can be guessed.

Interesting for passwords here
http://imgs.xkcd.com/comics/password_strength.png

mlts22,
Is this what you mean by three algorithm cascade options? Still learning here, thanks.

Serpent-Twofish-AES
AES-Twofish-Serpent

mlts22 wrote:

As for encryption, for normal stuff, AES is good enough. If I am storing stuff on a cloud provider (where I assume anyone on the Internet can copy the TC volume and try to crack it open at their leisure), I'll use a three algorithm cascade and a keyfile. That way, there is no brute force password that can be guessed.

AES is the backbone of business and government encryption, and there have been no known reports of AES-256bit ever being cracked. So would have to disagree that its only for normal stuff. In fact, to break the weaker AES-128bit, it's estimated that it would take one trillion computers, each processing one billion keys a second, two billion years to recover an AES-128bit key.

However, AES has been broken, meaning that flaws in the encryption have made it possible to extract the key in less time. But reducing two billion years to crack down to 50-100 million years still makes it safe. Remember, this is for a 128-bit key? While Truecrypt uses the much stronger 256-bit key by default.

Just because cascading encryption is more secure doesn't mean that its necessary? More likely an exaggerated overkill? And could significantly slow your system down for larger files. AES is still the fastest encryption offered by Truecrypt.

"TrueCrypt, leading encryption software touted and used by no less than Edward Snowden and Glenn Greenwald, now appears to be dead, according to its recently updated website, but no one seems to know why—or if the program's ominous warning is legitimate."

http://www.dailydot.com/technology/truecrypt-dead-unsecure/

Something really bothers me about the TrueCrypt binaries up for download: The code has not changed in two years, except the binaries for download were made yesterday, 27 may 2014, as per the gpg and Authenticode certificates. My question... what prompted the altering and re-putting the binaries up.

Something seems fishy... I wonder if someone "pwned" the TC guys big time.

This sucks though. At least I've been using BitLocker on most stuff because it is part of Windows, and TrueCrypt never played well with Windows 8.

do not download the version of TrueCrypt listed on the site right now folks

I have kept the install file when I got truecrypt just in case something like this happened or it went away. I want to make sur I can at least open my archives to move them to something else.
I don't need much security so truecrypt is still probably enough for me but I'll look at encrypted images. Too bad they only work under OSX; truecrypt was portable between OSX and windows.