Re: [Full-disclosure] Encrypted files and the 5th amendment

Tim, I actually use TruCrypt now to do exactly what you speak of. I pre-allocate a fixed virtual disk, and use one passcode for one section of data and a different passcode for a different section of data. It is impossible to determine if the disk is set up in this manner, and impossible to tell which section of data is being used. It is actually quite easy to do.


All fine and dandy until the authorities say "Your honor, the defendant
is using nested encryption, we didn't find the
$self_incriminating_evidence so he obviously hasn't complied with our
request".

double-edged sword.


Yeah, exactly. Any investigator worth their salt will be able to tell
the partition that got decrypted is not big enough to account for
encrypted disk space. That's where the one-time pad can create true
plausible deniability, if used correctly. Any ciphertext of length N
can decrypt to any plaintext of length N. Too bad it is too much of a
pain to implement in practice.

Thor: maybe you could make the investigator's job harder through a
combination of compression and encryption with a similar
dual-partition scheme as you're using with trucrypt.

tim

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Relevant Pages

  • How do I Use DPAPI to Encrypt and Decrypt Data (C#/VB.NET)?
    ... Use DPAPI to Encrypt and Decrypt Data ... The code below demonstrates how to call Data Protection API (DPAPI) ... In addition to encryption and decryption, ... public static string Encrypt ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Byte array to string and back - newbie question
    ... // Create a symmetric algorithm. ... This is done to make encryption more ... // Encrypt a string into a string using a password ... // Decrypt a byte array into a byte array using a key and an IV ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: CryptAPI(encryption/decryption)
    ... It seems like you're missing the Base64 decode step when trying to decrypt ... I misspelled the Private Key as Primary Key. ... Is there any variation in the encryption format in openssl compared to ... "Dylan DSilva " wrote: ...
    (microsoft.public.pocketpc.developer)
  • Re: Writing spaghetti code for obfuscation/encryption
    ... > undocumented opcodes and simple encryption? ... do the protection and distribution (I'll justify this later, ... This key was used to decrypt the main program code. ... So here's the scheme in action: Put disk in, ...
    (comp.lang.asm.x86)
  • Re: Which is more secure RC2 or RC4 ?
    ... Credit card info... ... If your application can decrypt the information (in order to send it ... one goofy solution may be to use public key encryption on ... decryption key on a separate computer (laptop). ...
    (sci.crypt)