Future of Kryptos
  • Yokemate of Keyboards
    Yokemate of Keyboards
    Zylesea
    Posts: 2057 from 2003/6/4
    Well, now that TrueCrypt seems to be abandoned (http://truecrypt.sourceforge.net/) - what about the future of Kryptos?
    --
    http://via.bckrs.de

    Whenever you're sad just remember the world is 4.543 billion years old and you somehow managed to exist at the same time as David Bowie.
    ...and Matthias , my friend - RIP
  • »31.05.14 - 19:16
    Profile Visit Website
  • MorphOS Developer
    itix
    Posts: 1520 from 2003/2/24
    From: Finland
    It is still good enough to prevent some random guy reading your data but I would not trust your trade secrets remain secret. With appropriate warnings Kryptos is still useable to protect sensitive data which is not interest to greater powers, IMO.


    [ Edited by itix 31.05.2014 - 20:34 ]
    1 + 1 = 3 with very large values of 1
  • »31.05.14 - 20:30
    Profile
  • MorphOS Developer
    CISC
    Posts: 619 from 2005/8/27
    From: the land with ...
    You might want to check out https://www.grc.com/misc/truecrypt/truecrypt.htm and then http://truecrypt.ch/


    - CISC
  • »01.06.14 - 07:07
    Profile
  • Priest of the Order of the Butterfly
    Priest of the Order of the Butterfly
    Cego
    Posts: 733 from 2006/5/28
    From: Germany
    Truecrypt Never worked for me. It just wouldnt decrypt my Volumes or partition. Too bad, Sounds like a good and useful tool.
    Pegasos II G4 @1.0GHz, 1GB DDR Ram, Radeon 9200Pro, 240GB SSD+160GB HD, MorphOS 3.18, AmigaOS4.1 FE, Debian 8
  • »01.06.14 - 07:31
    Profile
  • Paladin of the Pegasos
    Paladin of the Pegasos
    Intuition
    Posts: 1110 from 2013/5/24
    From: Nederland
    https://www.schneier.com/blog/archives/2014/05/truecrypt_wtf.html#c6346384
    1.67GHz 15" PowerBook G4, 1GB RAM, 128MB Radeon 9700M Pro, 64GB SSD, MorphOS 3.15

    2.7GHz DP G5, 4GB RAM, 512MB Radeon X1950 Pro, 500GB SSHD, MorphOS 3.9
  • »01.06.14 - 21:27
    Profile
  • Paladin of the Pegasos
    Paladin of the Pegasos
    Jupp3
    Posts: 1193 from 2003/2/24
    From: Helsinki, Finland
    Quote:

    itix wrote:
    I would not trust your trade secrets remain secret.

    Your trade secrets I might trust, but perhaps not those of my own :-)

    Anyway, the official story is "The software might not be secure, migrate to Microsoft solution."

    Unless I had access to the relevant sources by Microsoft, I wouldn't be too trusting about data being more secure there, especially with news like this coming to a light...

    Quote:

    • Outlook.com encryption unlocked even before official launch
    • Skype worked to enable Prism collection of video calls
    • Company says it is legally compelled to comply

    Why would it be any different in this case?

    What I mean to say, the claimed reasons for ending the project seem rather dodgy to me. The fact that the original development team has stopped development doesn't automatically make any solution based on it less secure overnight.
  • »02.06.14 - 14:42
    Profile Visit Website
  • Priest of the Order of the Butterfly
    Priest of the Order of the Butterfly
    Tcheko
    Posts: 535 from 2003/2/25
    From: France
    You want to keep something secret? Don't use a computer. Period.
    Quelque soit le chemin que tu prendras dans la vie, sache que tu auras des ampoules aux pieds.
    -------
    I need to practice my Kung Fu.
  • »03.06.14 - 07:07
    Profile Visit Website
  • Paladin of the Pegasos
    Paladin of the Pegasos
    Jupp3
    Posts: 1193 from 2003/2/24
    From: Helsinki, Finland
    There's news of TrueCrypt having a serious vulnerability, that will allow full system compromise.

    Sounds pretty dramatic, doesn't it?

    Actually reading the article reveals it's:
    1)On windows and
    2)It's a privilege escalation issue.

    Well, whenever someone uses any MorphOS system that's not locked in some way, he already has pretty "full" privileges, so I can't see this affecting MorphOS at all...

    Of course if it DOES affect MorphOS, I have no doubt our core developers wouldn't be fixing this for future releases.
  • »29.09.15 - 21:41
    Profile Visit Website
  • Acolyte of the Butterfly
    Acolyte of the Butterfly
    Sprocki
    Posts: 128 from 2005/2/23
    From: Berlin - Germany
    There are multiple follow-ups to TrueCrypt. It would be nice if MorphOS upgraded to one of these, best VeraCrypt or CipherShed:

    http://en.wikipedia.org/wiki/VeraCrypt
    https://en.wikipedia.org/wiki/CipherShed

    useful Shell toolbox:
    https://github.com/bwalex/tc-play/blob/master/README.md
  • »01.10.15 - 22:11
    Profile
  • Paladin of the Pegasos
    Paladin of the Pegasos
    Jupp3
    Posts: 1193 from 2003/2/24
    From: Helsinki, Finland
    Quote:

    There are multiple follow-ups to TrueCrypt. It would be nice if MorphOS upgraded to one of these

    AFAIK, MorphOS doesn't use TrueCrypt, but instead, "Something based on TrueCrypt".

    Of course this brings up couple of questions:
    1)Are any found vulnerabilities also present in MorphOS version? (The latest one which I linked, I'd say no)
    2)Have any follow-up projects improved the parts of code that MorphOS Kryptos is actually using?
    3)Do any changes make it more impractical for MorphOS? (like getting slower due to increased security)

    My guess would be, large amounts of modifications might be for how it's used on Windows / Linux / OSX.
  • »06.10.15 - 10:54
    Profile Visit Website