Tag Archives | free encryption software

Create an encrypted virtual drive with CloudFogger

/ 1 January, 2012 / Encryption Software / Permalink

 Easily share encrypted files

CloudFogger is all in one encryption solution to encrypt and share your documents, it uses AES256 and public key RSA to secure the data,it can be used to encrypt your cloud storage documents before uploading them. During installation you will get a Windows warning saying that the driver publisher signature could not verified, it is ok to carry on installing the software as long as you downloaded it from the official website. You will need to reboot your computer and CloudFogger will prompt you to create an account for which you will have to facilitate an email address that needs to be verified using a code, the process shouldn’t take more than a couple of minutes.

After your CloudFogger account has been created you will notice a new letter on your computer hard drive (:X), anything you store there will be automatically encrypted and only accessible while your are logged into your CloudFogger account, it works like the encrypted virtual drives created by Truecrypt, what CloudFogger adds is easy sharing allowing you to add email addresses of people who can access the file, and single file encryption using the extension .cfog.

CloudFogger virtual drive encryption

CloudFogger virtual drive encryption

Any single file you encrypt is automatically stored in the virtual drive, when you double click on a .cfog file it will not decrypt, you will have to right click for that,  everything works integrated with Windows right click mode, there is no interface. CloudFogger claims it doesn’t create temporary files hence being more secure than encrypting using other applications, but if you view a file using an external application (e.g. Windows Media Player) a temporary back up file could be created and there is nothing CloudFogger can do about it.

CloudFogger has some time saving advantages over traditional on-the-fly encryption,right click integration and not needing to enter a password to encrypt the file while you are logged into your account, it can also securely wipe files which is something that normally requires separate software, and it makes it easy to share encrypted files the same way like SpiderOak does, but I did not find this encryption tool very intuitive to use, it think that you will have to read the manual to understand how everything works, it shouldn’t take long thought, and a first steps guide is included. This software does not support any kind of anonymity, everything works through email addresses  (sender&receiver) which are obviously traceable.

Note: Windows version is still in beta, there are plans to make an Android, iOS and Mac version.

Visit CloudFogger homepage

0 Comments

Review file encryption program ProtectOrion Data Safe

/ 14 November, 2011 / Encryption Software / Permalink

Secure AES encryption software

ProtectOrion Data Safe is an user friendly file encryption software made by an Austrian company, after installing it you will be prompted to create a masterpassword, a password strength meter will let you know how secure your password is, the user is forced to enter a password made up of a combination of letters and numbers or special characters, otherwise it will be rejected for being too weak.

ProtectOrion main window is very informative, a toolbar above lets you know the full file path where data is being stored in Windows, and below you are shown the remaining free hard disk space and encrypted database size. Through the interface you can create folders where to classify your encrypted data (files and folders), just like you would do working on your operating system but with the data encrypted, a wastebin securely keeps any files you erase in case you change your mind.

ProtectOrion file encryption software

ProtectOrion file encryption software

A Windows widget, called SafePad, holds over your desktop at all times if you choose so, it can be used to drag and drop files or full folders for automatic encryption with the AES256 cipher (used by many government agencies and banks), after dragging a file you can choose in what encrypted folder you would like to place it, ProtectOrion options allow you to specify if the original file should be securely wiped after encryption or only copied, leaving the original file intact, the software can be set to autolock after a preset time or manually locked if you need to go away from your computer, the encrypted database can easily be backed up anywhere you like and restored.

Another feature is a password manager where you can create groups of passwords, usernames and URLs, all nicely put together, you can paste passwords to the clipboard with a single click, for security, the passwords are automatically erased from the clipboard after 15 seconds. There is a portable version of this software that can be installed on a USB thumbdrive with ProtectOrion ToGo (7MB), encrypted passwords can be synchronized in between the desktop and USB thumbdrive.

Most of the software functions are intuitive but a complete well structured PDF manual is included anyway, my main concern with this software is the existence of temporary files when you open them, a common Windows problem is that the operating system can create automatic unencrypted backups of photos or documents you are viewing in hard to find places.

Freeware encryption ProtectOrion

Freeware encryption ProtectOrion

Protectorion Data Safe claims to securely wipe files after adding them to the encrypted database but besides the fact that it stops data recovery software, they do not mention anywhere what method and how many wipes they use.

I think this could a good program for people who want something very easy to use with no learning curve, an eye candy interface and have very low security needs, if your opponent is someone well funded stay away from this encryption software, I saw decrypted temporary files created on the hard disk while the safe was open, once you close the encrypted safe the temporary files vanish, but I don’t know if they are securely wiped or not, there is no information about this anywhere.

Other encryption programs (Safetica, DiskCryptor, etc) create encrypted virtual drives where to store the data, that appears to me a far more secure solution than encrypting and decrypting every single file when you view them, even if they were wiped, the data leakage risk is still higher, the more files need to be wiped, the easier it is something can go wrong (ie computer crash leaving files decrypted before they have been erased).

ProtectOrion is the living example of why just because certain encryption software is using an unbreakable cipher like AES256 does not mean it is secure, how encryption is implemented needs to be considered too.

Note: The free version of this software is limited to 100 files and 5 passwords, a popup window invites you to upgrade your version when you open the software.

Visit Protectorion Data Safe homepage

0 Comments

Encrypt text files using the AES cipher with Scrambled Egg

/ 8 September, 2011 / Encryption Software / Permalink

Text encryption software freeware

This open source cross platform program will encrypt text messages using a wide range of algorithms to choose from, AES, Blowfish, ARC2, CAST, 3DES or RSA using your own public encryption key, text compression with Zlib or Bz2 can be performed before encryption.

Scramble-Egg has a portable version to take it with you in a USB thumbdrive, needing 20MB of space, the software doesn’t need any administrator rights or special plug ins to run, it is an ideal portable encryption tool, the resulting encrypted text can be saved as XML, Json, UU or a .png image, a “No tags” option can be turned on and off depending on if you want the receiving end to know algorithm combination has been used leaving an attacker intercepting the encrypted message wondering what kind of file it is as it doesn’t have any identifying sign giving away what tool has been used for encryption, in order for someone to decrypt the message, besides the password, they will also need to know the cipher combination, if you eliminate tags you will have to inform the receiver about the used combination.

You can copy the ciphered text and send it by email, paste in a document or post it to a Usenet group, encryption is performed in real time slowing down your computer as you type with the CPU load spiking implementing the encryption algorithm, as soon as you add a character or change some setting you will see the resulting ciphered text straight away on the second pane.

Scrambled-Egg text encryption software

Scrambled Egg text encryption software

For covert communications you could easily embed a small encrypted text message in a webpage HTML code and in the event that anyone looked at the source code, which few people do, they would not be able to work out what the message says or what has been used to cipher it, the advantage of embedding an encrypted message on a website as opposed to sending it is that if the website has lots of traffic, it becomes impossible to know who received/read it.

The help file is very basic and it could be improved, Scrambled Egg is easy to use but it appears to assume that people using it already understand what each one of the compression and encryption algorithms mean as the instructions do not explain anything about them, I would recommend you use AES for encryption as it is a standard algorithm widely reviewed by cryptographers and regularly tested for weaknesses. My favourite feature is that Scrambled Egg works in Windows, Linux and Mac, this makes it easy for your friends to use this encryption tool regardless of their operating system.

Visit Scrambled Egg homepage

0 Comments

Easy to use file encryption software Lazar Crypter

/ 23 August, 2011 / Encryption Software / Permalink

Windows file encryption

This small free open source software will encrypt single files using using Windows context menu, it uses AES256bit algorithm for encryption and it is very easy to use. You only need to select a file, or multiple files, right click and select “Encryt” or “Decrypt” from the context menu, you can also decrypt a file by double clicking on it.

Lazar Crypter Windows file encryption

Lazar Crypter Windows file encryption

Lazar Crypter will save encrypted files with its own file extension, .icr, encryption of multiple files at once is possible, but no multiple file decryption, this could be because each single file should have its own unique password. This program is lightweight on resources, only 400Kb in size, there is no helpfile and you don’t need one, encryption can not get any easier than this, if you know how to copy and paste a file then you know how to encrypt and decrypt.

Lazar Crypter could come in handy to email an encrypted file to someone who also has the program but it is not very useful to store encrypted files in your hard disk because temporary and original data is not wiped, you will need a data wiper if you are going to use this program to guard stored files in your hard disk from unwanted eyes.

Visit Lazar Crypter homepage

2 Comments

Encrypt hide and lock folders with Secure Folder

/ 3 August, 2011 / Computer Security / Permalink

Freeware for low security needs

Secure Folder is a free Windows utility that can lock, hide and encrypt folders (folders bigger than 150MB will only be locked and not encrypted), it can also hide a network drive by hiding the letter and drive icon and it includes a system cleaner to erase recently open files, event log and Windows Prefetch files, dragging and dropping a folder on the Window program will also wipe it making its recovery impossible even with specialist data recovery tools.

The program is very easy to use, with Windows Explorer integration in the shell menu, a tabbed interface and drag and drop feature, it doesn’t have the prettiest of interfaces but it is intuitive and very easy to use, Secure Folder takes advantage of Windows permission settings to lock your folders and make them inaccessible, it can also be hidden from view just like Windows hides its system files from users, this is not the most best method to secure a folder as techie users can find a way around, to make sure your folder is truly locked from unauthorized access apply the encryption setting which uses the AES256 cipher.

Secure Folder encryption and locking

Secure Folder encryption and locking

My main concern with this program is that the author claims in the FAQ that if you have forgotten your password and you mail him the settings.xml file you can get your password back, this sounds like a backdoor, I would stay away of  back doored software unless your security needs are very low, backdoors can not only be used to recover forgotten passwords by the developer but also exploited by malicious hackers, if a backdoor exists, it is just sitting there waiting for discovery.

Visit Secure Folder download page

0 Comments

Free offline password manager Password Sentinel

/ 14 July, 2011 / Encryption Software / Permalink

Free password management tool

This free open source password manager with source code (GPL license) available for download makes for a perfect alternative to Keepass. It is light on computer resources, its interface is simple and easy to understand, there is no need to install this password manager in your computer, it can run from inside a USB thumbdrive. It,includes a password generator to help you create a unique strong password for each online account you have, stored passwords can be searched and classified by groups (Email, FTP, banking, etc).

Password Sentinel own database is a .kdb extension but you can export and import the password database as .txt, .xml, .html and .csv, these formats are accepted by nearly all offline and online password managers and guarantees you that if you ever want to migrate password manager it will be easy to do without getting locked down in propietary formats.

Free password manager Password Sentinel

Free password manager Password Sentinel

Password Sentinel main features

  • Database encrypted with unbreakable AES and Twofish cipher algorithms
  • Portable password manager, does not require installation
  • Customizable random password generator
  • Easy password database export and import (.csv, .txt, .html…)
  •  Auto-type shortcut keys fill in username and password saving you time
  • You can attach files to your password entries

This Windows password manager can protect you from scripts stealing data stored in the Windows clipboard, after a set length of time the clipboard will clear itself, another feature called One Time Paste only allows pasting the copied password only once.

Password Sentinel might not have the prettiest of interfaces but features more than make up for it and it is very easy to use by computer novices, it has been designed to run in all Windows platforms, the ability to add attachments (software license, scanned passport, etc) combined with the price, free, and being open source, is what makes Password Sentinel one of the best Windows password managers.

Visit Password Sentinel homepage

5 Comments

Top 5 programs for full disk encryption

/ 15 June, 2011 / Encryption Software / Permalink

Why use full disk encryption

If you encrypt your whole hard drive including your operating system you will not have to worry about wiping data, clearing the Internet browser cache, deleting temporary files and encrypting individual files, all you will have to worry about is choosing a strong passphrase that can not be broken using a brute force attack (trying dictionary words).

The only way to access a fully encrypted operating system is by getting access to the computer while it is switched on (decrytped), you will save lots of time if you decide to encrypt your full operating system, it is not difficult and there is free software for that. Windows Vista and 7 come with BitLocker Drive Encryption for full disk encryption but only the more expensive business high end editions do and it has been designed for businesses with few home user features.

Full disk encryption software without backdoor

Truecrypt (Free): It’s wizard driven menu will guide you through the whole encryption process, there are many algorithm choices, if you do not understand what they mean leave all of the default choices on, they are secure enough for everyone. Truecrypt can encrypt external devices, create virtual encrypted drives and create a hidden encrypted operating system, to be used if you are forced to give up the password.

You will find it easy to find support for Truecrypt at computer security forums and Usenet groups as it is one of the most used full disk encryption programs.

Truecrypt encryption algorithm

Truecrypt encryption algorithm

DiskCryptor (Free): Open source encryption software, it can encrypt partitions that have already data on them, it supports AES, Twofish and Serpent encryption algorithms, allows you to encrypt USB flash drives and external hard disks with automatic mounting, support for key files, option to place the boot loader on an external device.

DiskCryptor full disk encryption

DiskCryptor full disk encryption

ZoneAlarm Datalock (Under $50):  There is no backdoor in this encryption software but it is possible for ZoneAlarm to reset your password if you choose to upload a security file to their site during installation, you can opt out to make sure they can never be forced to give it out to anyone. Datalock uses 256-bit AES and it supports Trusted Module Platform hardware encryption, when a computer has a TMP chip the encryption keys and digital certificates can be stored within it for protection from external attacks.

ZoneAlarm Datalock encryption

ZoneAlarm Datalock encryption

DriveCrypt Plus Pack: (Over $100): Whole operating system encryption with AES256-bit, no backdoor, it can hide an undetectable operating system in the hard drive free space, this is useful if someone forces you give up your password, they would not be able to prove a second operating system exists, it can be used in conjunction with USB tokens for preboot authentication, login preboot screen can be changed, you can create your own.

DriveCrypt Plus Pack encryption

DriveCrypt Plus Pack encryption

SecureDoc WinMagic (Over $100): Encryption of laptops, USB devices and desktop computers using AES 256 bit, certified FIPS 140-2 Level 2, it supports multifactor authentication at preboot level, no backdoor but password recovery is possible if you set it up, available in various languages, extended audit logging make SecureDoc a good option for businesses.

SecureDoc WinMagic full disk encryption

SecureDoc WinMagic full disk encryption

Full disk encryption performance

I have been using full disk encryption for over 5 years, I have used DiskCryptor, Truecrypt and DriveCrypt Plus Pack, in all cases there has been no computer slowdown while I was using full disk encryption, even using it on a low performance netbook with an Intel Atom CPU showed no noticeable performance issue.

If you are a home user you do not need to worry about full disk encryption slowing down your computer activities, the software normally needs very low resources to run on.

2 Comments

File compression and encryption software BCArchive

/ 17 May, 2011 / Encryption Software / Permalink

WinZip and WinRar free alternative

When you compress files you will be saving computer hard disk space, bandwidth and speeding up data transfers, file compression is useful to get around email maximum file attachments size too. Commendable file compression tools will allow for password protecting of compressed files, the most popular file compression software, WinZip and WinRar both have sound uncrackable file encryption protection, but they are not free, they show you a nagging screen asking you to buy the software.

BCArchive is %100 free from day one and its encryption features beat WinZip and WinRar hands down, this file compression and encryption tool is multilingual, available in Arabic, Chinese, German, Farsi, Russian, Spanish and Turkish, it creates its own .bca compressed encrypted file or a self extracting .exe for people without BCArchive installed to be able to decrypt it.

BCArchive encryption key manager

BCArchive encryption key manager

BCArchive integrates nicely with Windows shell right click, encryption and compression of a file can be done using two mouse clicks, if you use a password that is too short the software will not allow you to encrypt the file forcing you to use a better passphrase, when using symmetric encryption you can choose what encryption algorithm to use, some of the available ones are IDEA, Blowfish 448, AES Rijndael, Serpent, Gost, Cast5 and 3DES, you can choose the hashing algorithm as well SHA1, SHA256, RIPEMD160 or MD5. BCArchive symetric encryption ciphers are all well known in the cryptography community and considered sound, the best is to stick to the defaults if you don’t know which one to use.

It is possible to use asymmetric encryption with public and private secret encryption keys, you can create standard PKCS #12, X.509 public encryption keys within BCArchive key manager or import your own PGP keys created elsewhere, BC Keymanager allows you to import your PGP encryption keys directly from the Internet connecting to a PGP public key server.

To encrypt files use the interface or drag and drop files inside the BCArchive window,  you can compress and encrypted files of up to 2 Terabytes in size. When you view files these are extrated to a temporary folder and securely wiped when the archive is closed, for those who are geeky, BCArchive can be run from the command line.

BCArchive main features

  • Self-extracting of encrypted files
  • Drag and drop of files and Windows shell integration
  • PGP compatible asymmetric public/private encryption keys, RSA, ElGamal / Diffie-Hellman
  • Symmetric encryption ciphers, AES, Blowfish-448, IDEA, CAST5, GOST 28147-89 and 3DES
  • Secure hashing algorithms SHA-256, SHA-1, MD5 and RIPEMD-160
  • Data securely wiped from temporary folder after viewing


Visit BCArchive homepage

2 Comments

Review Axcrypt free file encryption program

/ 21 April, 2011 / Encryption Software / Permalink

File encryption software

AxCrypt is a free open source encryption program for Windows computers available in 32-bit and 64-bit versions, after installing AxCrypt it will integrate with your right-click  menu and allow for single click encryption, it is very easy to use, there is nothing to configure, everything works straight out of the box after installation, you can right-click on a folder and instruct AxCrypt to encrypt the entire contents, the program will then create multiple encrypted file belonging to each one of the files inside.

The software interface is multilingual, available in 7 different languages, it can be used from the command line and a portable version of AxCrypt is available for those on the go wanting an encryption programs that runs from inside a USB thumbdrive.

There is no maximum file size for encryption, the only size limit comes imposed by your operating system boundaries on file size, AxCrypt runs on very low resources, to use AxCrypt you only need 5MB RAM, 2MB hard disk space, temporary disk space 1.5 the size of the file being encrypted, and a low end computer desktop CPU.

Because AxCrypt is open source, you can download the source code and compile the program yourself where you to feel inclined, you could check the source code for backdoors before compiling it.

AxCrypt encryption method

AxCrypt uses the AES algorithm with 128-bit keys for file encryption and SHA-1 for hashes, there is no backdoor, if you forget your password that is it. The AES encryption algorithm that AxCrypt uses was selected by NIST (American Nations Institute of Standards and Technology) after a 5 year process in which fifteen competing designs were presented, AES is the current Federal USA Government standard algorithm for encryption.

AxCrypt file encryption

AxCrypt file encryption of MP3 file

Files encrypted with AxCrypt have the extension .axx, it retains the original file name and information, you can rename the file if you want to disguise a descriptive name, temporary files are automatically shred, the encryption keys are not stored in Windows page file. If you don’t want to erase the file after encryption you can just choose encrypt copy from AxCrypt menu.

To make it more difficult for an attacker to brute force your password and make the best of the full 128-bit encryption strength potential that AxCrypt offers, you should be using with a meaningless passphrase sequence of 22 characters, if you decide to create a keyfile with AxCrypt and use it for encryption your files will automatically be secured at the maximum level, the keyfile encryption method can be used in conjunction with a password.

AxCrypt software developers recommend that you always create a keyfile for encryption, the created keyfiles are made of 256 bits encoded in Base64, they are saved as a .txt text file with random characters in it.

AxCrypt file decryption

When sending your encrypted file over email to someone else that person will need AxCrypt installed to decrypt it, there is a free program called AxDecrypt that allows others to view AxCrypt encrypted files without installing the full software,  AxDecrypt only serves to open files with the .axx extension and it can not encrypt.

You can choose to create .exe self-decrypting files, the other end does not need any kind of program to view the encrypted data, they just need to know the password used, one downside is that .exe files many times contain viruses and few people trust them, antivirus could flag them as a malware, and some email services like Gmail do not accept the sending of .exe file attachments.

Like all symmetric encryption software when you send an encrypted file to someone he/she will need to know the password you are using, you can transmit the password over a secure channel, ideally in person and if that it is not possible then using an encrypted VoIP call, or an Internet messaging program with built in encryption.

File encryption vulnerabilities

While AxCrypt contains no backdoor and the algorithm it uses can not be cracked at present, all file encryption programs have side vulnerabilities residing on the operating system, this is what you should watch out for.

  1. Weak password, file encryption programs are only as good as your password

    2. Solution: Use a very hard to guess passphrase not contained in a dictionary or use a keyfile to secure your files, use a password manager if needed to remember it.

  2. Temporary files and backup copies stored by the your operating system while viewing the decrypted file

    3. Solution: Use data wiping software in conjunction with your file encryption software, routinely wipe Windows locations where temporary files are normally stored, like for example the Windows page file, quality data wiping software come already preconfigured to securely erase those locations.

  3. Your computer has a keylogger installed that captures your password

    4. Solution: Have an updated antivirus and use a high quality firewall that will warn you of outgoing connections, the default Windows firewall will not do this.

AxCrypt file decryption

AxCrypt file decryption

After decrypting a file AxCrypt will automatically overwrite it, secure data wiping consists of a single pass using pseudorandom data, this is enough to protect you from common undelete software but it will not protect you from expensive special diagnostics hardware used by well funded adversaries like corporations and law enforcement, if you need that level of protection get a different encryption software because data could be recovered from previously erased data.

AxCrypt online documentation is very complete, if you want to know the inner workings visit their homepage, if you get stuck, they have an online forum and a mailing list where to ask questions to other users.

Conclusion on AxCrypt file encryption

It doesn’t have the prettiest of interfaces and its configuration capabilities are next to none, while some might view this as a disadvantage, others will see it as an advantage because it makes operation very easy to understand for beginners.

AxCrypt strong points are that it is open source, it contains no backdoor, it uses a standard uncrackable algorithm for encryption (AES128) and it is easy to operate, its interface could be improved but it gets the job done, this is an excellent program for those on a budget because it is free (donationware) and it will securely encrypt your files.

I would not hesitate recommending AxCrypt to friends in need of secure encryption software but the single pass temporary data overwriting was disappointing, if you are a business user stay out of AxCrypt because it is only secure enough for the home user due to this.

Visit AxCrypt homepage

2 Comments

Android phone full disk encryption with WhisperCore

/ 18 March, 2011 / Mobile Phone / Permalink

Still in beta and only supporting the Nexus S phone but it will be extended to other devices soon. WhisperCore integrates with Android OS including basic platform management tools and using robust encryption performed using the uncrackable AES 256 algorithm in XTS mode to cipher all of the data on your Android mobile device with the option to encrypt the SD (Secure Digital) card and any external microSD card associated with the phone.

Nexus S Android phone

Nexus S Android phone

This encryption Android app it is now free to use for individuals, business users need to pay, and it is installed like any other application, after choosing your password every time you boot your Android phone you will be asked for it, forgetting your password will make it impossible for you or anyone else to use the phone, there is no backdoor.

Visit WhisperCore homepage

0 Comments