Tag Archives | easy to use encryption software

Lacie Private-Public AES256 encryption based on Truecrypt

/ 31 January, 2012 / Encryption Software / Permalink

Truecrypt alternative

Lacie Private-Public is a multilingual free encryption program for Windows and Mac computers based on Truecrypt, it comes with Truecrypt license included. What makes it different from Truecrypt is its simplicity of use, while Truecrypt will give you many encryption algorithms and options this tool sticks to the standard AES256 encryption and does not give the user any kind of option, you can create an encrypted virtual drive with just three clicks without reading the manual, which is available online. Encrypted containers are saved with the .lc extension and automatically named “La-Private” inside a folder bearing the same name, the software does not need installation you can carry it with you on a USB thumbdrive, however, administrator rights are still needed.

Encrypted containers larger than 4GB can not be created in FAT32 drives, to achieve this you will have to reformat to NTFS (Windows) or HFS+ (Mac). Anyone familiar with virtual drive encryption software will instantly know how to use this program, after creating an encrypted container you will see a new drive letter appear next to your C: hard drive, anything you store in there will be automatically encrypted.

Lacie Private-Public AES256 encryption

Lacie Private-Public AES256 encryption

To lock the container right click on Lacie’s logo in Windows toolbar and select dismount, to access the data again execute the program and enter the password. The only possible settings are password change, mount encrypted volume as read-only and timed self-dismounting, Lacie Private-Public appears to be directed towards the 100% newbie person that knows nothing about encryption products and is not interested in learning about them or customization options.

The company claims that there is no backdoor, if you forget your password that is it. Full disk encryption has been eliminated, to use this capability you will have to look for something else, the only advantage Lacie Private-Public seems to have over Truecrypt is that it is extremely simple to use and it should not frighten off computer ignorant people.

Note: This software can not run if you have Truecrypt installed, they both use the same drivers.

Visit Lacie Private-Public encryption tool

0 Comments

Review file encryption program ProtectOrion Data Safe

/ 14 November, 2011 / Encryption Software / Permalink

Secure AES encryption software

ProtectOrion Data Safe is an user friendly file encryption software made by an Austrian company, after installing it you will be prompted to create a masterpassword, a password strength meter will let you know how secure your password is, the user is forced to enter a password made up of a combination of letters and numbers or special characters, otherwise it will be rejected for being too weak.

ProtectOrion main window is very informative, a toolbar above lets you know the full file path where data is being stored in Windows, and below you are shown the remaining free hard disk space and encrypted database size. Through the interface you can create folders where to classify your encrypted data (files and folders), just like you would do working on your operating system but with the data encrypted, a wastebin securely keeps any files you erase in case you change your mind.

ProtectOrion file encryption software

ProtectOrion file encryption software

A Windows widget, called SafePad, holds over your desktop at all times if you choose so, it can be used to drag and drop files or full folders for automatic encryption with the AES256 cipher (used by many government agencies and banks), after dragging a file you can choose in what encrypted folder you would like to place it, ProtectOrion options allow you to specify if the original file should be securely wiped after encryption or only copied, leaving the original file intact, the software can be set to autolock after a preset time or manually locked if you need to go away from your computer, the encrypted database can easily be backed up anywhere you like and restored.

Another feature is a password manager where you can create groups of passwords, usernames and URLs, all nicely put together, you can paste passwords to the clipboard with a single click, for security, the passwords are automatically erased from the clipboard after 15 seconds. There is a portable version of this software that can be installed on a USB thumbdrive with ProtectOrion ToGo (7MB), encrypted passwords can be synchronized in between the desktop and USB thumbdrive.

Most of the software functions are intuitive but a complete well structured PDF manual is included anyway, my main concern with this software is the existence of temporary files when you open them, a common Windows problem is that the operating system can create automatic unencrypted backups of photos or documents you are viewing in hard to find places.

Freeware encryption ProtectOrion

Freeware encryption ProtectOrion

Protectorion Data Safe claims to securely wipe files after adding them to the encrypted database but besides the fact that it stops data recovery software, they do not mention anywhere what method and how many wipes they use.

I think this could a good program for people who want something very easy to use with no learning curve, an eye candy interface and have very low security needs, if your opponent is someone well funded stay away from this encryption software, I saw decrypted temporary files created on the hard disk while the safe was open, once you close the encrypted safe the temporary files vanish, but I don’t know if they are securely wiped or not, there is no information about this anywhere.

Other encryption programs (Safetica, DiskCryptor, etc) create encrypted virtual drives where to store the data, that appears to me a far more secure solution than encrypting and decrypting every single file when you view them, even if they were wiped, the data leakage risk is still higher, the more files need to be wiped, the easier it is something can go wrong (ie computer crash leaving files decrypted before they have been erased).

ProtectOrion is the living example of why just because certain encryption software is using an unbreakable cipher like AES256 does not mean it is secure, how encryption is implemented needs to be considered too.

Note: The free version of this software is limited to 100 files and 5 passwords, a popup window invites you to upgrade your version when you open the software.

Visit Protectorion Data Safe homepage

0 Comments

Encrypt and compress files with Secure Archive

/ 6 October, 2011 / Encryption Software / Permalink

File compression alternative to WinZip and WinRar

Secure Archive is a file encryption, data compression and file wiping utility suitable for individuals and businesses alike, it is simple and easy to use with right click integration and drag and drop, unlike other compression programs with encryption, like WinZip or WinRar, Secure Archive allows for high customization of encryption, you can choose to secure your files with Advanced Encryption System (AES), aka Rijndael, Blowfish, a patent free encryption algorithm, or NASCLL which appeared to be a proprietary encryption cipher of which the help file did not included any information at all, you will be better off using one of first two ciphers as they are tried and tested.

This free file encryption program options allow you to choose by how much data should be compressed (none, low,high), I failed to see its usefulness as I would imagine everyone wants it set at a high compression, the default setting, but no harm in including that. When you encrypt a file Secure Archive will let you know the password key strength in bits as you type together with a message saying if it is an acceptable password or not, in advanced options you can select what metadata should be saved together with the encrypted file, for example, time stamps, file attributes, CRC file integrity, you can choose to wipe the original file after encryption too.

Secure Archive encryption file utility

Secure Archive encryption file utility

The only shortcomings I found in Secure Archive is that the help manual failed to mention anything about their NASCLL encryption method, the secure wipe window could not be resized and it did not have a progress bar, it puzzled me that the developers claim that file wiping is being implemented using the standard US Department of Defense 5220. 22-M method which consists of a three wipe pass, but Secure Archive data wiping window indicates a single secure delete pass by default, my wild guess here is that it could mean a 1 time US DoD 5220.22-M data wiping pass but I can’t really be sure.

Secure Archive encrypted file properties

Secure Archive encrypted file properties

Secure Archive can be a good alternative to AxCrypt, useful for anyone in need of a free program to secure single files before emailing them, the .SAef file extension will confuse the other end, you both will have to be using the same software unless you create an encrypted self-extracting file which Secure Archive can do, data compression appeared to perform well, it managed to reduce my the seize of my WordPerfect document by 70%, I compressed the same file using WinZip .zip method and it compressed it by 71%, pretty much the same result.

If you are afraid that someone can guess your password using a brute force attack, Secure Archive lets you create what they call a HardKey, called keyfile in other software like Truecrypt, you can secure your compressed file with a password and a HardKey needing both to open it, something you know and something you have, but this HardKey can not be anything you like, it needs to have been created with the Secure Archive and anyone coming across it will know what it is for but it can enhance your security when emailing confidential documents if these happen to get intercepted or end up in the wrong inbox.

Visit Secure Archive homepage

0 Comments

Free offline password manager Password Sentinel

/ 14 July, 2011 / Encryption Software / Permalink

Free password management tool

This free open source password manager with source code (GPL license) available for download makes for a perfect alternative to Keepass. It is light on computer resources, its interface is simple and easy to understand, there is no need to install this password manager in your computer, it can run from inside a USB thumbdrive. It,includes a password generator to help you create a unique strong password for each online account you have, stored passwords can be searched and classified by groups (Email, FTP, banking, etc).

Password Sentinel own database is a .kdb extension but you can export and import the password database as .txt, .xml, .html and .csv, these formats are accepted by nearly all offline and online password managers and guarantees you that if you ever want to migrate password manager it will be easy to do without getting locked down in propietary formats.

Free password manager Password Sentinel

Free password manager Password Sentinel

Password Sentinel main features

  • Database encrypted with unbreakable AES and Twofish cipher algorithms
  • Portable password manager, does not require installation
  • Customizable random password generator
  • Easy password database export and import (.csv, .txt, .html…)
  •  Auto-type shortcut keys fill in username and password saving you time
  • You can attach files to your password entries

This Windows password manager can protect you from scripts stealing data stored in the Windows clipboard, after a set length of time the clipboard will clear itself, another feature called One Time Paste only allows pasting the copied password only once.

Password Sentinel might not have the prettiest of interfaces but features more than make up for it and it is very easy to use by computer novices, it has been designed to run in all Windows platforms, the ability to add attachments (software license, scanned passport, etc) combined with the price, free, and being open source, is what makes Password Sentinel one of the best Windows password managers.

Visit Password Sentinel homepage

5 Comments

Digital certificate email encrytion with Comodo SecureEmail

/ 12 June, 2011 / Encryption Software / Permalink

Email encryption with digital certificate

Sending email via Gmail, Yahoo and Hotmail it is like sending a postcard, anyone who comes across it can read its contents, that includes your ISP and your email provider, Gmail even scans your email contents to introduce what they call relevant publicity, encrypting email messages is the only way to make sure that no third party can eavesdrop on your communications.

There are a few specialist webmail providers that use encryption end to end but you are trusting them with your encryption keys, in security you must trust as few people as it is possible, the more people has access to your private encryption keys the easier a data leakage will be.

Comodo SecureEmail works locally in your computer to send, receive and store encrypted emails, including attachments, it is easy to use and deploy, and free, you can digitally sign emails to confirming the sender’s identity, a digital signature is even harder to fake than a real life pen and paper signature. The software is compatible with Windows Live Mail, Thunderbird, Eudora and other IMAP and SMTP email clients. Comodo SecureEmail comes with a wizard to easily import a Comodo email certificate for encryption and digital signing, or just choose to import someone’s public encryption key instead.

Comodo SecureEmail encryption software

Comodo SecureEmail encryption software

If the receiver of the emails does not use Comodo SecureEmail he can still read the encrypted messages using a web based reader, the messages will be encrypted using a single use session digital certificate.

Comodo SecureEmail main features

  • Easy to use for newbies with automatic encryption and decryption of emails
  • It supports most email clients even if they haven’t got built-in encryption
  • Wizard to install the necessary digital certificates to encrypt and digital sign messages
  • Web reader service to decrypt messages encrypted using a single use digital certificate (aka session certificate)

This email encryption software is light in resources, a small 6.5MB download and it is very flexible, you will not have to swap email software, once the digital certificates have been installed the whole encryption process is automated without having to exchange public encryption keys, encrypting emails using a digital certificate is as secure as using PGP keys to secure messages and easier to use for newbies.

Visit Comodo SecureEmail homepage

0 Comments

iSafePDF to encrypt and digitally sign PDF documents

/ 9 May, 2011 / Encryption Software / Permalink

PDF documents security

iSafePDF is a free open source utility to encrypt, digitally sign and timestamp your PDF documents, after using it, the encrypted document will still be viewable with any PDF reader (if you know the password), the program is very easy to use, divided into tabs, each one of the tab can carry out a function, like encryption and digitally signing the document, there are additional security options to stop document printing and modification.

iSafePDF document digital signature

iSafePDF document digital signature

You can create a time stamped signature using a Time Stamping Authority (TSA), making your digital signature valid even if the certificate key expires, in the Document tab you can change the PDF MetaData information, like author, title, subject and keywords (to find the PDF easily).

This free software to encrypt and digitally sign PDF documents is portable, no installation is needed to use it, the only downside it is that documents can only be encrypted/digitally signed one at a time, it has no batch processing.

Visit iSafePDF homepage

0 Comments

Quick and easy E-mail encryption using Safester

/ 1 May, 2011 / Encryption Software / Permalink

Review email encryption software Safester

Safester is a free email encryption program using public and private key encryption DSA/Elgamal 2048 bits and AES 256 bits to secure your messages, the program is written using Java, it works in Windows, MAC OS and Linux.

In order to use Safester to send encrypted emails the receiver and the sender both will need to have the software installed, if  the receiver doesn’t have an account when he receives an encrypted message a notification from Safester will be sent with an invitation to download the program.

After downloading and installing Safester you will need to create an account, this will create your public and private key encryption keys, the passphrase you use it is not stored in the servers and only known to you, there is no way for Safester to recover your passphrase they do not have access to it and there is no backdoor, you can set up a password recovery email system from inside your account if you want, this is optional.

E-mail encryption software Safester

E-mail encryption software Safester

All of the encrytion is carried out locally in your computer, communications with Safester servers are encrypted, in the unlikely event that someone manages to intercept the transmission you would still be protected because no data ever leaves the computer unencrypted, the messages you send and receive are archived encrypted in Safester servers in Switzerland. The free version of this email encryption service allows for a 20MB of email storage Inbox and email attachments have 512Kb maximum size, there are paid for plans for those who need personalized support, a bigger storage inbox and sending larger attachments.

I found the email client very lean in features, you can compose messages in HTML, there is a built-in spell checker for English and French, vacation auto-responder, proxy settings, address book and message folders, it is enough to get the job done but without bells and whistles.

One of Safester’s best features it is the ability of setting up double authentication using your smart phone and your passphrase to log into your email account, the One Time Authentication system works with the iPhone and Android.

Email encryption Safester advantages

  • Easy maintenance free email encryption for newbies (no learning required)
  • You can use any email address you like (Hotmail, Yahoo, etc)
  • Email client can restrict printing and forwarding of emails
  • Email client can be configured to send messages using a proxy

Email encryption Safester disadvantages

  • Both, sender and receiver need to have Safester installed
  • You are forced to use Safester’s own email client (which is very simple)
  • Your need to trust a third party with your security

Safester review conclusion

I you are a geeky person who knows how to use GPG/PGP to encrypt emails, you will be better off using your own software for email encryption (e.g. Enigmail), this way you will not have to rely on a third party to take care of your security and you will be able to use any email client you like for encryption without forcing others to download the same software you have installed.

OpenPGP email encryption program Safester

OpenPGP email encryption program Safester

If you have a company and do not have the time and resources to train your workers in email security and encryption, Safester is for you, anyone who knows how to send an email can use Safester, encryption could not get any easier, the great advantage Safester has over any other email encryption software it is simplicity and easy to use, Safester will save businesses money by not having to spend time on training staff.

Visit Safester homepage

0 Comments

Review Axcrypt free file encryption program

/ 21 April, 2011 / Encryption Software / Permalink

File encryption software

AxCrypt is a free open source encryption program for Windows computers available in 32-bit and 64-bit versions, after installing AxCrypt it will integrate with your right-click  menu and allow for single click encryption, it is very easy to use, there is nothing to configure, everything works straight out of the box after installation, you can right-click on a folder and instruct AxCrypt to encrypt the entire contents, the program will then create multiple encrypted file belonging to each one of the files inside.

The software interface is multilingual, available in 7 different languages, it can be used from the command line and a portable version of AxCrypt is available for those on the go wanting an encryption programs that runs from inside a USB thumbdrive.

There is no maximum file size for encryption, the only size limit comes imposed by your operating system boundaries on file size, AxCrypt runs on very low resources, to use AxCrypt you only need 5MB RAM, 2MB hard disk space, temporary disk space 1.5 the size of the file being encrypted, and a low end computer desktop CPU.

Because AxCrypt is open source, you can download the source code and compile the program yourself where you to feel inclined, you could check the source code for backdoors before compiling it.

AxCrypt encryption method

AxCrypt uses the AES algorithm with 128-bit keys for file encryption and SHA-1 for hashes, there is no backdoor, if you forget your password that is it. The AES encryption algorithm that AxCrypt uses was selected by NIST (American Nations Institute of Standards and Technology) after a 5 year process in which fifteen competing designs were presented, AES is the current Federal USA Government standard algorithm for encryption.

AxCrypt file encryption

AxCrypt file encryption of MP3 file

Files encrypted with AxCrypt have the extension .axx, it retains the original file name and information, you can rename the file if you want to disguise a descriptive name, temporary files are automatically shred, the encryption keys are not stored in Windows page file. If you don’t want to erase the file after encryption you can just choose encrypt copy from AxCrypt menu.

To make it more difficult for an attacker to brute force your password and make the best of the full 128-bit encryption strength potential that AxCrypt offers, you should be using with a meaningless passphrase sequence of 22 characters, if you decide to create a keyfile with AxCrypt and use it for encryption your files will automatically be secured at the maximum level, the keyfile encryption method can be used in conjunction with a password.

AxCrypt software developers recommend that you always create a keyfile for encryption, the created keyfiles are made of 256 bits encoded in Base64, they are saved as a .txt text file with random characters in it.

AxCrypt file decryption

When sending your encrypted file over email to someone else that person will need AxCrypt installed to decrypt it, there is a free program called AxDecrypt that allows others to view AxCrypt encrypted files without installing the full software,  AxDecrypt only serves to open files with the .axx extension and it can not encrypt.

You can choose to create .exe self-decrypting files, the other end does not need any kind of program to view the encrypted data, they just need to know the password used, one downside is that .exe files many times contain viruses and few people trust them, antivirus could flag them as a malware, and some email services like Gmail do not accept the sending of .exe file attachments.

Like all symmetric encryption software when you send an encrypted file to someone he/she will need to know the password you are using, you can transmit the password over a secure channel, ideally in person and if that it is not possible then using an encrypted VoIP call, or an Internet messaging program with built in encryption.

File encryption vulnerabilities

While AxCrypt contains no backdoor and the algorithm it uses can not be cracked at present, all file encryption programs have side vulnerabilities residing on the operating system, this is what you should watch out for.

  1. Weak password, file encryption programs are only as good as your password

    2. Solution: Use a very hard to guess passphrase not contained in a dictionary or use a keyfile to secure your files, use a password manager if needed to remember it.

  2. Temporary files and backup copies stored by the your operating system while viewing the decrypted file

    3. Solution: Use data wiping software in conjunction with your file encryption software, routinely wipe Windows locations where temporary files are normally stored, like for example the Windows page file, quality data wiping software come already preconfigured to securely erase those locations.

  3. Your computer has a keylogger installed that captures your password

    4. Solution: Have an updated antivirus and use a high quality firewall that will warn you of outgoing connections, the default Windows firewall will not do this.

AxCrypt file decryption

AxCrypt file decryption

After decrypting a file AxCrypt will automatically overwrite it, secure data wiping consists of a single pass using pseudorandom data, this is enough to protect you from common undelete software but it will not protect you from expensive special diagnostics hardware used by well funded adversaries like corporations and law enforcement, if you need that level of protection get a different encryption software because data could be recovered from previously erased data.

AxCrypt online documentation is very complete, if you want to know the inner workings visit their homepage, if you get stuck, they have an online forum and a mailing list where to ask questions to other users.

Conclusion on AxCrypt file encryption

It doesn’t have the prettiest of interfaces and its configuration capabilities are next to none, while some might view this as a disadvantage, others will see it as an advantage because it makes operation very easy to understand for beginners.

AxCrypt strong points are that it is open source, it contains no backdoor, it uses a standard uncrackable algorithm for encryption (AES128) and it is easy to operate, its interface could be improved but it gets the job done, this is an excellent program for those on a budget because it is free (donationware) and it will securely encrypt your files.

I would not hesitate recommending AxCrypt to friends in need of secure encryption software but the single pass temporary data overwriting was disappointing, if you are a business user stay out of AxCrypt because it is only secure enough for the home user due to this.

Visit AxCrypt homepage

2 Comments

Very easy to use encryption software Conceal

/ 13 February, 2011 / Encryption Software / Permalink

This free encryption software named Conceal it is very easy to use, to encrypt a file all you have to do is to drag and drop it inside the Window that has a padlock on it, you will then be prompted to enter a password. After that you select the encryption algorithm you wan to use, Fast Encrypt, RC2, AES or TripleDES, the less secure encryption algorithms are quicker but the time difference can possibly be measured in seconds, I would recommend you choose the uncrackable AES encryption cipher.

Encryption software Conceal

Encryption software Conceal

When you want to decrypt  your data, stored using the .xcon file extension, just select the file with the mouse and drag and drop it inside Conceal window that has a key drawn on it, enter the password and you are done. If you want to introduce encryption to someone who doesn’t know anything about computers, Conceal is the ideal program to do that, there are only two Windows to choose from, one to encrypt and the other to decrypt data, they both are descriptive enough looking at the picture they have, no long manuals to read and no need to learn about the inner workings of encryption, Conceal is one of the easiest encryption programs to be found and if you use it with the AES algorithm, the data will be safe.

In case you find it too hard to remember your passwords Conceal will offer you to save them to your hard disk, encrypted, when you want to decrypt the file, point the software to your password file and it will be automatically entered.

Visit Conceal homepage

0 Comments

S10 Password Vault a free password manager

/ 11 January, 2011 / Computer Security / Permalink

Secure offline password manager

The problem using always the same password is that if one of the sites you are member of gets cracked then that person will get access to all of your other accounts as well, using a secure password manager is the best way to be able to use a hard to crack passphrase for each website and remembering all of them at the same time.

S10 Password vault is a free offline password manager utility that uses the uncrackable AES256 cipher for encryption, it foils keyloggers, autolocks after a predetermined set time, tells you if your password is strong enough or generates it for you, and it has a portable edition. All of this in just 670Kb, a really tiny application with lots of great features.

When you install S10 Password Vault for the first time it will create an encrypted .s10p database where all of your passwords will be stored, make sure to back it up and do not worry about losing it as only with the masterpassword it is possible to look at its content.

The coolest time saving feature of S10 Password Vault is that to log into a site you won’t even need to type in your password, as long as S10 Password Vault is open you can use a keyboard shortcut and S10 Password Vault will automatically fill in the password for you.

The only downside I found with S10 Password Vault is that the help file is online, it could probably be improved if a PDF file with the manual could be made available for download, I also think that the password manager window and fonts could benefit from being a little bigger than they actually are.

S10 Password Vault

S10 Password Vault

What I liked most is the structure of the folder hierarchy that helps to get a quick access to your passwords, the autologin feature that saves you time by entering the password for you, and the embedded anti keylogger that sends lots of random hidden decoy keystrokes to obscure the real password as it is typed, very useful to use in conjunction with the portable S10 Password Vault edition at a public computer.

There is a premium, very cheap, business edition of S10 Password Vault that includes automatic central back up of employee passwords, central control over configuration settings and ability to use a private synchronization server. S10 Password Vault is an entirely free password manager for home users, if you like the software you can make a donation to the developer.

Visit S10 Password Vault homepage

4 Comments