TrueCrypt is a great product but if you don't have full system encryption, temporary files are deleted insecurely by the OS and then can easily be recovered. Also keys can be found in the virtual memory up to 5 minutes after the computer is shut down, problems faced by all encryption utilities. There are, however, tools that overwrite unused disk space (one included on PGP) . The bottom line is PGP is fine unless you're hiding stuff from NSA and in that case, you're screwed anyway.

You know, I have to disagree with the guests on this show. I highly doubt that the strength of whole disk encryption is based on whether or not it's opened source. Listen to the way they talk, e.g. The only solution is an OpenSource solution.* To me that's a bit biased but I can understand where they're coming from. - How many users really download these applications with their source code, compare hashes, and fully understand what's going on? Encryption is based on so many mathematical factors.

Can't you just......not turn it on?

Yes by default its not on,this is all FUD,the bypass is activated by cmd line by a user who has authentication to the disk in question and will deactivate itself after the 1st reboot,its in place for admins doing upgrades that require a reboots so that they can RDP to the machine in question.

So to make it clearer,you the owner of the drive who has the symmetric password needs to activate the feature yourself via cmd line with your password to get this done in the first place,so if someone who has the rights to do it, does it, so what?.....whos fault is it if you then dumb enough not to ensure the machine boots so its deactivated automatically,these pll on this call dont have a clue about the function what so ever.

YOU MAKE ME SICK DUDE

OK so there is no such animal as "absolute security"...so who gives a damn? There is no such thing as the absolute truth either but that still doesn't relieve us of the burden of trying to find it. You say if you want security...move to a cabin in Montana. That was cute...no allusion to Kaczynski was it? Funny...with all their multibillion dollar snoop satellites and other hdwr you paid for, it still took fedgov 17 years to find him---and even then only because he BRAGGED.

encryption serves a similar purpose to password protection. If you want you computer/email password protected then why would you not want the content contained within your computer/email account encrypted?

BTW true crypt is a very easy tool to use.

Whole disk encryption has its down fall. if your hard drive is encrypted by this means while your computer is on the key has to be stored in the main memory. and most computer people will tell you when power is disrupted from the memory it loses all the data, this is not 100% true, it does lose data but it takes time. and if you cool the chip (with liquid CO2 the data can be stored for 10+ minutes, enough time for a theif that is determinant to get the key and break into your data

V ery

I rritating

S hi*

T o

A nyone

Take note Bill Gates, We know What agreements were made between You and the CIA, Backdoors and all, We don't want that crap, Keep XP and Ditch Vista no-one wants it.PRAT!

PGP is a bag of Sh** as with a majority of encryption programs out there, Most have been broken and only a handful still remain unbroken.

Personally I use TOTP (True One Time Pad) Encryption,

Random generated Bit bin

Random Generated TOTP file

Random Generated Key Bit File

Asymetric keys

TOTP file destroyed after one use

Over 150 MB Binary Files

So anyone can have whatever encryption program they want, I KNOW that MY communications are secure, Can You say the same with certainty?.

I agree. Why does everyone keep buying the governments line - i.e. the only good encryption is AES, etc.. Geez, you think thats cause they can break it?

PGP has a response on their site. In summary the bypass can only be used by an individual with the key to unlock the drive anyway.Helpdesks patching at night cant have systems booting back up into the pre-boot auth.On reboot, the bypass is turned off automatically.Single license users with a WDE laptop cant have the bypass turned on unless someone steals it while its on and thus unlocked.I dont work for PGP.

Social Security Numbers were never designed to be a secret.

These guys are morons. Who needs whole disk encryption. Use a virtual encrypted disk, mount it, throw all your sensitive material in there, and have it set to unmount after 1 minute of inactivity. Bam.

If privacy is more importand then the actual content then encrypt it.

Great information.

Just a comment what was mentioned for encryption being for those who have something to hide. True, but also for those that aren't looking for everyone to think they have a free access.

Let's just hope the encryption algorithms hold up.

thank your government for that "feature"

the "feature" could be the government it may not be, however if we assume it is the government and you are trying to hold information from them by means of PGP you are waisting you time. PGP is no match for government software. pgp is simply a symmetric key hidden by a a-symmetric. and yes if you are worried about absolute privacy... forget about it.

I agree. Given government resources, all encryption can do is slow down an attacker long enough for the information to hopefully become obsolete or changed before it's compromised. But the casual email thief at your local ISP or the creep that snags your unguarded laptop should be foiled indefinitely.

really PGP uses large prime numbers multiply them to get a larger number and that is the public key, well there is a large but finite amount of numbers that = the key and one can use trial and error, of course with a super computer. and that is assuming they dont have a backdoor. good news it might keep local law enforcement at bay until they recrute the FBI even then think of the zodiac killer, he keept the FBI at bay too.

btw good book "the code book" by Simon Singh

@tonyrueb

BS. There are an infinite number of primes (go read up on number theory). We will never run out of primes and the probability of someone guessing the two primes used to generate keys is infinitesimal

@b1naryd1g1t5 - you are correct, there are an infinite amount of primes. however you need to read better. i said "there is a large but finite amount of numbers that = the key" not there is a large but finite amount of numbers that could be the key, but that is = to the key.

plus we can eliminate primes that are to large, for example, chances are PGP does not use primes that are million digits long. thus making it finite.

i do understand number theory, and cryptography quite well infact

@b1naryd1g1t5 - i also wish to add, it is done all the time people, PGP is not safe from people why have the money to buy super computers that can crack the code. on my personal PC, yes your primes are safe, but if i had access to more powerful computing, it wouldn't be

@tonyrueb

If you think a supercomputer can find the two primes, you do not understand the size of the numbers we're talking about here. It would take longer than the age of the universe to factor a 2048 bit RSA modulus using ALL the computing power on earth. It simply ain't happening based on our current knowledge of factoring algorithms.

So, even though there is a fixed number of possibilities for a key, the possibilities are so numerous as to be essentially infinite to an attacker.

secuity in privicey dosnt exseit. my ssn was let out and marcus gibson used it in a bad way. until the police caught him i sat in jail for his actions. we can only hope that the people that get or have our info wont use it in the wrong way. trust is the only security we have i think. nothing is privite and we just have to except that.

Another sly comment about Vista!

But I do appreciate the hard work that Chris does for the internet and users. He should be knighted for his work!

I give him the title of: Grandmaster Tech

He will now be called GM Chris Pirillo

Thanks for your hard work and help you are giving to the most vunerable of internet and computer users. Nobody else seems to care. Hope it goes far for you, I'll be recommending your sites to people in the Uk who are having problems.

Just stop the Vista bashing!

if you hide everything, than you cant see anything and cant boot the computer right? because the computer cant see the BIOS and all because it is encrypted

i have nothing to hide thankfully

Yea, what's the point then hu?

yeah what IS up with bit locker? I was wondering how good it really is.

wow