Skip to main content
  1. Home
  2. Computing
  3. News

Why TrueCrypt might not be so insecure after all

By

have i been pwned owner uncovers 13 million plaintext passwords leaked from free webhost is a safe password even possible we
guteksk7/Shutterstock
Reports of TrueCrypt’s flaws were greatly exagerated, if a 77-page report coming out of Germany’s Fraunhofer Institute is anything to go by. The intensive six-month study concludes that the encryption software is nowhere near as insecure as reported back in 2014.

“Our general conclusion is that TrueCrypt is safer than previous examinations suggest,” wrote professor Eric Bodden in a blog post announcing the study.

Recommended Videos

TrueCrypt was discontinued in the summer of 2014 — the developers said they didn’t want to maintain a standard with “unfixed security issues.” It’s still not clear exactly what those vulnerabilities were — they were never announced, in part to protect the project’s millions of users. Security researcher James Forshaw did find two flaws in September that could be used to compromise a machine (though not decrypt an encrypted hard drive), but it’s possible the vulnerability that led to the project being abandoned is something else entirely.

Related

Whatever the problem is, the Fraunhofer Institute didn’t find anything they deemed a critical flaw during their six-month study — though they did state that encryption can’t solve all security concerns.

“From a security perspective, the fact that TrueCrypt is a purely software solution means that it cannot in principle protect against all relevant threats,” says the study.

Bodden added to this point in his blog post.

“It does not seem apparent to many people that TrueCrypt is inherently not suitable to protect encrypted data against attackers who can repeatedly access the running system,” wrote Bodden, adding that “TrueCrypt seems not better or worse than its alternatives” so far as encrypting data is concerned.

Basically, if someone already has access to your system in some way — be it physical access to the machine while it’s running, or the installation of Trojan horse malware — encryption of any kind won’t help. Keyloggers can be installed, and files can be accessed by malware while the user is accessing an encrypted drive — no encryption can prevent that. Encryption does, however, make it hard for someone who steals your hard drive to access the data on it.

Whatever flaw prompted the TrueCrypt developers to abandon the project — and even advise developers to not fork it — may not have shown up in any study, but it’s becoming harder to imagine what that flaw might be. A fork of the software, called VeraCrypt, includes patches for every bug that’s been found so far.

Editors’ Recommendations

Topics
Justin Pot
Justin Pot
Former Digital Trends Contributor
Justin's always had a passion for trying out new software, asking questions, and explaining things – tech journalism is the…
GameStop shows it’s not so essential after all, moves to digital-only orders
physical video game releases recover after five year slump gamestop 3 640x0

GameStop has moved to digital-only ordering after receiving intense scrutiny over its initial reaction to concerns over COVID-19, better known as the coronavirus. GameStop initially told employees to refuse to close down stores despite statewide orders throughout the U.S. forcing nonessential businesses to do so.

GameStop announced this weekend that all of its U.S. storefronts will close, and it's moving orders online. The company is offering curbside pickup in addition to its regular online delivery, but gamers must make purchases through the retailer's website or mobile app.

Read more
Best early Black Friday 17-inch laptop deals 2024: Up to 37% off HP, Asus, LG, and more
Dell XPS 17 9370 front angled view showing display and keyboard deck.

Update 11/13/24: We’re still a couple of weeks away from the official launch of Black Friday, but already we’ve seen some Black Friday 17-inch laptop deals come and go. This is likely going to be the case in the lead-up to Black Friday, which is why we’ll be continuing to update this list regularly.

The early Black Friday deals we’re seeing so far have been great if you’re in the market for a laptop. There are a lot of early Black Friday Dell laptop deals, early Black Friday Best Buy laptop deals, and early Black Friday gaming laptop deals to shop. Here we’re looking more specifically at 17-inch laptop, which make a great laptop option if you prefer some screen real estate. There aren’t as many 17-inch laptops on the market as there used to be, with 16-inch laptops taking their place, but we’ve managed to find several that are seeing Black Friday deals.
Asus Vivobook 17 — $330 $530 38% off

Read more
Early Black Friday External Hard Drive and Portable SSD Deals
Digital Trends Best Black Friday External Hard Drive Deals

Update 11/13/24:With Black Friday rapidly approaching, we're doing our best to keep up with all the best external hard drive deals that have been coming out. To that end, we've updated these deals with a few more options, as well as updated pricing. Also, its very much worth checking back as we find more and better deals to add to this article!

Early Black Friday deals are popping up all over the place, with things like Black Friday Dell laptop deals, Black Friday gaming laptop deals, Black Friday tablet deals, and Black Friday desktop PC deals offering some hefty discounts. If you’ve had your eye on any of these, you may also want to consider an external hard drive for some additional storage space. There are several Black Friday external hard drive deals worth taking a look at, and we’ve rounded up the best of them below. Read onward for all of the details, as well as some information on things to look out for if you plan to purchase an external hard drive while these Black Friday deals are taking place.
Crucial X6 SE 1TB external SSD — $80 $100 20% off

Read more