[Discuss] CipherShed: TrueCrypt fork
Jerry Feldman
gaf at blu.org
Wed Oct 1 15:59:04 EDT 2014
Richard lives in a faraday cage :-)
The reasons I prefer software encryption is that algorithms can be
compromised. A software encryption system can be updated, and re-encrypt
your data. While firmware can also do the same thing it is more
difficult. Additionally you can set the BIOS/frmware password on your
system even though you are using LUKS or some other disk encryption.
Also, consider how valuable your data might be to a thief. If your data
contains many peoples accounts and SSNs, then the data would be
considerably more valuable then let's say a few of your credit card
numbers.
On 10/01/2014 11:19 AM, Bill Bogstad wrote:
> On Wed, Oct 1, 2014 at 4:56 PM, Richard Pieri <richard.pieri at gmail.com> wrote:
>> Meh.
>>
>> Today, if someone were to ask my opinion I'd say "no" to any and every
>> software-based disk encryption system. If you want to encrypt the entire
>> disk then get a self-encrypting disk and set a BIOS/firmware password on
>> the host.
> Because you trust the firmware provided by the disk drive manufacturer? You
> clearly aren't wearing your tin foil hat today.
>
--
Jerry Feldman <gaf at blu.org>
Boston Linux and Unix
PGP key id:B7F14F2F
PGP Key fingerprint: D937 A424 4836 E052 2E1B 8DC6 24D7 000F B7F1 4F2F
More information about the Discuss
mailing list