Business > Double Click
Data Encryption
Three programs that will keep your data safe and secure.
FROM: MAR-APR 2007 ISSUE | BY ALEKSANDAR KRAGL
We all keep at least part of our lives – and a great deal of our work – in digital format, conveniently stored on our computers, and maybe even properly backed up. But what happens if your computer gets stolen and your client information is compromised? Even if you have it backed up, there’s still the risk your sensitive data could fall into the wrong hands.
There are many software programs that can encrypt your information, making it unreadable to anyone who does not posses the right key. Here are a few I would recommend.
TrueCrypt
TrueCrypt is one of my favourite pieces of software. It is very simple to install and intuitive to use, has well-documented and powerful features, and is constantly improved upon by the open-source community of developers who maintain it. With it you can encrypt your USB key, your complete hard drive, or one of its partitions. It implements some of the strongest encryption algorithms available today, among them AES-256, an officially mandated standard for all Canadian and U.S. government top secret documents. And it allows you to use two types of encryption keys – passwords and tokens.
One valuable TrueCrypt feature is called “hidden volumes.” This provides additional protection for your files by creating supplementary encrypted areas inside your original encrypted drive, a feature that comes in handy if you fear someone might force you to divulge your password. If you store all your truly sensitive information inside your hidden volume, you can still provide the main password under threat without compromising vital information. A TrueCrypt volume cannot be identified – it maintains its original time stamp and file extension, and contains no signature or ID. And all of the encryption algorithms have been proved mathematically unbreakable by brute force.
Once installed, TrueCrypt is very unobtrusive. It is free for both personal and commercial use, and regular updates are provided approximately every six months.
Where to obtain it: www.truecrypt.org
Platform: Windows, Linux
EncryptOnClick
On the other side of the functionality spectrum, when you need only encrypt a few files or directories and don’t require the versatility of a full-featured program, there is EncryptOnClick. This small and elegant application is very simple to use, with an unusually minimalist interface consisting of just four buttons. It offers very strong file protection – password-based AES-256 encryption. Upon installation it becomes available at the click of the mouse to encrypt or decrypt any file or directory on your computer. It is also free for personal and commercial use.
Where to obtain it: www.2brightsparks.com
(click on Downloads, then Freeware)
Platform: Windows
BestCrypt
The commercially available BestCrypt from Jetico Inc. is a robust, fully featured, and versatile encryption software application similar to its free counterpart TrueCrypt. BestCrypt also offers a set of powerful encryption algorithms, including the aforementioned AES-256, virtual encrypted disk drives, encrypted physical hard drives, hidden volumes, two types of keys, and the ability to disconnect your encrypted volumes if they sit idle for a set amount of time.
BestCrypt protects your encrypted files from accidental deletion, and provides the option of turning your encrypted hard drives back to their original decrypted state without reformatting them. The drawback is that to obtain all this functionality you need to install two separate BestCrypt applications, making it a little less convenient to use. Also, you cannot turn off the BestCrypt Control Panel, even if you don’t have any encrypted volumes in use, meaning it will always use a bit of your computer’s resources. Another minor issue is that BestCrypt will not warn you if your chosen password is considered weak (not long or complex enough).
BestCrypt is offered in two configurations – Standard, starting at U.S. $59.95 per computer, and Corporate, starting at U.S. $99.95 per user. Volume discounts are available for both configurations, as is a free 30-day trial.
Where to obtain it: www.jetico.com
Platform: Windows, Linux
Getting familiar with and using any of these programs is like hiring your own data security guard who ensures the files you want to keep safe stay that way. It can even be a point of competitive advantage if you inform your clients about the steps you’re taking to keep their confidential information protected.
One important thing to keep in mind is that you are entirely responsible for remembering the passwords you use with any of these programs. If you forget the password, there is no way to retrieve it.
[ TOP ]
Aleksandar Kragl , is a database analyst formerly with CGA-Canada’s IT department.
“Double Click” is coordinated by John Yu, m.sc., cdp, fcga, and vice-president, Information Technology, at CGA-Canada.