3 March 1998
Date: Tue, 3 Mar 1998 04:13:28 -0500 (EST)
From: andrew fabbro <afabbro@umich.edu>
To: cypherpunks@toad.com
Subject: Hard Drive Encryption Packages Comparison (Win 95)
Windows 95 Hard Drive Encryption Packages Comparison
----------------------------------------------------
by Andrew Fabbro <afabbro@umich.edu>
3 March 1997
I've had several requests to post this to the cypherpunks list, and I'm
also posting it in the newsgroups where I originally asked for software
suggestions. This list only compares FEATURES -- I have not done any
independent analysis of these products' claims and have not even tried
the evaluation copies of all of them. This was originally just for my
own reference -- I've cleaned it up a bit but it isn't exhaustive, or
necessarily fair.
I'm sure there are other packages-- if you think I've left something
significant out, please let me know. I'd also appreciate any
corrections or giggles at obvious errors in thought.
After getting some feedback/corrections, this will eventually be put on
the Web.
----------
DISCLAIMER
==========
I am just a Doc-Martens-and-earrings cypherpunk, not a security
consultant! I am not a professional cryptologist, nor a Windows 95
expert. You should NOT take my opinions at face value -- you should
evaluate these products yourself. This list is just designed to give
you some starting points and save you some leg work. Of course, I take
no responsibility, make nor warranties, blah blah...
----------------------------------------
INTRO: EXPLANATION OF LISTINGS AND TERMS
========================================
These packages all provide interface functionality beyond the simple
file-by-file encryption available with, say, PGP. Either they provide
a drive interface or they allow you to designate a list of files which
are then transparently or automatically de/encrypted in some fashion.
If you have only a few files or anticipate only temporary or infrequent
de/encryption, then PGP or something similar would probably suffice.
I've separated this list into two categories using my own made-up
terms: Virtual Volume programs and File List programs. VV programs
make a large file on your hard drive which is transparently available
to Win95 as a drive (similar to the way DriveSpace/DoubleSpace works).
Once you authenticate and mount the drive, everything else is
transparent.
With File List programs, you designate a list of files or folders that
you want encrypted. The encryption package then en/decrypts these
either on-the-fly as you access them, or in bulk at boot-time/
shutdown-time. Most offer individual file/folder manual operation as
well. Unlike Virtual Volume programs, which pretty much all operate
the same way, there is a greater variation in interface with File List
programs, so evaluate closely before purchase.
In practice, the difference between Virtual Volume and File List
programs is not that great: you type your password once at login and
everything else is handled by the software. The only difference is
that with File List programs, you have to designate files or folders,
which might be a more frequent task than designating a single drive.
On the other hand, all of your sensitive files may live in only a few
directories anyway, and File List programs let you place these
files/folders anywhere on your system, mingled in with non-encrypted
files.
There were a few packages which appear to operate in a truly manual
mode -- you decrypt before opening and then encrypt when you're
finished with the file (assuming you don't forget, or become lazy). If
you're going to do this, just use PGP, which is likely already on your
system already, you little cypherpunk, you, and offers CAST, IDEA, and
Triple-DES. Packages with manual-mode operation are under
"Manual-Operation Packages" at the end. Norton is so vague about the
operation of "Your Eyes Only" on their web page that it is listed in
this section.
"Preview" refers to an evaluation copy-- if one is available for
download (be it crippleware or whatever), this field is marked Yes.
----------------
MY PERSONAL PICK
================
I'm still evaluating, but will likely settle on Kremlin. Even though
virtual volumes seem easier to me, Kremlin has one must-have feature I
haven't found elsewhere: it addresses the Windows swapfile issue.
Windows' swapfile has raw hunks of memory swapped out to disk, which
which could contain anything from any open file. These swapfiles are
not reliably deleted at shutdown-time, or in the event of a system
crash, and in any event Windows certainly doesn't securely (DoD-style)
delete them. Some snooper with a boot disk, file recovery utility, and
hex editor could stop by and read previous memory images...talk about
data leakage.
None of these packages allow you to encrypt the swapfile while Windows
is running, but Kremlin's Sentry does the next best thing. At
shutdown-time, it securely deletes the swapfile and other temp files,
wiping the drive DoD-style. The fact that Kremlin's design was
obviously thought out from the perspective of an integrated platform
and took this issue into account gives me a warm fuzzy feeling. Also,
Kremlin offers the most diverse array of algorithms and has some nice
extras, such as a secure Recycle Bin, which is easier to use than
having to remember to run a special secure delete command from the
context menu. And it's only $35!
If I were administering a site-wide encryption program, I might choose
something that was designed for that environment and offered more
administrative options. I've made notes on packages which address this
situation and its issues.
----------
SIDE NOTES
==========
BLOWFISH was specifically designed to be fast in software
implementations on 32-bit processors and would likely be the fastest
algorithm you can pick. I've not noticed any lag when using
BLOWFISH-based systems on a 486-66 w/32MB RAM (hardly a fast machine).
Some publishers only specified a "Genuine RSA Encryption Engine,"
displaying a RSA-licensed logo. This isn't snake oil, but I'd sure
like to know more about the crypto.
-----------------------
VIRTUAL VOLUME PACKAGES
=======================
Product : BestCrypt
Manufacturer : Jetico, Inc.
Type : Virtual Volume
Crypto : BLOWFISH, GOST, DES
Features : timeout close, hotkey close, secure delete
Cost : $89.95
Preview? : Yes - 30 day trial, after expiration, volume becomes read-only
Web : http://www.jetico.sci.fi/np_new.htm
Notes : Joel McNamara (Private Idaho's author) picks this for
his Cryptobook specification (see
http://www.eskimo.com/~joelm/cryptbk.html). A
completely free and very well-designed DoD-spec file
deletion utility is available at Jetico web site, too,
as a separate freeware package (BCWipe - get it!)
Product : SafeHouse
Manufacturer : PC Dynamics
Type : Virtual Volume
Crypto : BLOWFISH, FAST, DES/Triple DES
Features : Configurable passwords/expirations, optional key recovery,
C++ developer's toolkit available.
Cost : $79.95
Preview? : Yes - free trial version with 40-bit DES
Web : http://www.pcdynamics.com/SafeHouse/
Notes : key recovery is optional- you can choose to "brand" the
volume or not.
Product : Private Disk (in beta)
Manufacturer : Private Data, Inc.
Type : Virtual Volume
Crypto : Not specified - "strong" versions for US/Canada
Features :
Cost : not listed
Preview? : Beta participation program
Web : http://www.privatedata.com/
Notes : I mention this only for die-hard cypherpunks who want
to try new toys and might be interested in beta
participation.
------------------
FILE LIST PACKAGES
==================
Product : Kremlin
Manufacturer : Mach5
Type : File List
Crypto : CAST, IDEA, BLOWFISH, RC4, Safer SK-128, DES, and NewDES
Features : Automatic Decrypt/Encrypt at Login/out, includes a secure
text editor/e-mail package, secure Recycle Bin, Sentry
program to automate swap/temp/other-file wiping.
Cost : $35
Preview? : Yes
Web : http://www.mach5.com/kremlin/
Notes : This is a very nice package and my personal pick -- see
my notes in the intro.
Product : RSA SecurePC
Manufacturer : Security Dynamics, Inc.
Type : File List
Crypto : RC4
Features : Trustee threshold key recovery system, boot lock, screen lock,
network support, password expiration/rule management
Cost : Not listed, and I was too lazy to make a phone call to find out
Preview? : Yes
Web : http://www.securitydynamics.com/solutions/products/securpc.html
Notes : The key-recovery system is very well-thought out and
involves trustee thresh-holds -- i.e., you can decide
that three (or seven or whatever) administrators'
signatures are necessary to recovery a key...prevents
malicious admins' snooping. The admin support (for
site-wide usage) is also nice. This product was
formerly published by RSA, who now licenses it to
Security Dynamics. This looks like a very well-designed
package with many extras for group-use situations,
though more crypto options would be nice.
Product : SecureWin
Manufacturer : Cipher Logics
Type : File List
Crypto : RSA Public. No further details were specified.
Features : SecureWin is more of an integrated security environment
than just a hard drive encryptor -- it also includes
secure deletions, e-mail integration, a password keeper,
etc. There is an extensive access-control facility.
Operates via a "secure Start menu," a taskbar add-on.
Network support.
Cost : $29.95
Preview? : Yes - 30 day evaluation download.
Web : http://www.securewin.com/
Notes : Very well done from a user interface point of view and
has numerous cool add-ons. I wish more information was
given on the crypto and its implementation.
Product : F-Secure Desktop
Manufacturer : Data Fellows
Type : File List
Crypto : Triple-DES ("168-bit"), BLOWFISH
Features :
Cost : $99
Preview? : No
Web : http://www.datafellows.com/f-secure/desktop/
Notes : Normally, you specify a set of folders/files to be
de/encrypted at login/out. Alternatively, you can list
files as "Top Secret," which means you must manually
de/encrypt them via context menu.
Product : DataGuard
Manufacturer : Secure Services Link, Ltd.
Type : File List
Crypto : IDEA, SEAL
Features : extensive class-based access control, trustee-threshold
key recovery system
Cost : $69
Preview? : No
Web : http://www.sls.net/dataguard_v2.html
Notes : The class-based access control lists appear to offer
highly configurable access control: classes of data
(e.g., workgroup or by sensitivity or whatever), with
access rights offered by right to select users. You can
also set "minimum eyes" thresholds for groups-- e.g.,
all members or certain members must be present for
access to be given. Encryption or decryption rights can
be separated. This would be very nice for site-wide
situations, except...the basic package does not offer
network support. "Pro" and "Net" packages which do are
slated for April '98 release.
-------------------------
MANUAL-OPERATION PACKAGES
=========================
Product : SAFE Folder
Manufacturer : GlobeTech Catana
Type : File List, Semi-Manual
Crypto : BLOWFISH
Features :
Cost : $58.75
Preview? : Yes - password fixed to "DEMO"
Web : http://www.globetech.se/safe/
Notes : From the web page, I infer that you have to manually
de/encrypt files. It can operate at a folder level,
which is at least some improvement over file-by-file
operation. I didn't see any reason why this product
would be better than any of those listed above.
Product : Your Eyes Only
Manufacturer : Norton (Symantec)
Type : File List, Manual?
Crypto : It uses a "Genuine RSA Encryption Engine".
Features : boot-time lock, screen lock, uses context menu,
network support
Cost : $89.95
Preview? : No
Web : http://www.symantec.com/yeo/index_product.html
Notes : I couldn't tell if this operated in some sort of
transparent or automatic fashion like other file list
programs, or if you had to encrypt/decrypt each folder
manually. A screen shot shows a user using a context
meny that has "Enable SmartLock Folder" and "Disable
SmartLock Folder," which implies some non-manual mode of
operation. E-mail to Symantec asking for more
information (and details on their crypto) went
unanswered. There is also an administrator's version of
this program.
Product : Stealth Encryptor
Manufacturer : Tropical Software, Inc.
Type : File List
Crypto : BLOWFISH, DES ("64-bit")
Features : installable crypto modules (via .DLL, development kit
available), secure delete, e-mail integration
Cost : $34.95
Preview? : Yes
Web : http://www.tropsoft.com/stealth/
Notes : This package's unique feature is its support for
drop-in crypto modules. Theoretically you could write
your own .DLL with another crypto system of your choice
and Stealth Encryptor would integrate it. If you have a
burning desire to do this, you might look into this. SE
also features "Stealth Media Encryption" which is "super
speed" for image files, executables, etc...presumably
with weaker crypto.
Product : SecureStore
Manufacturer : Selom Ofori
Type : Manual
Crypto : BLOWFISH, DES/Triple-DES, CAST, RC4, Diamond2
Features :
Cost : $30
Preview? : Yes
Web : http://www.freeyellow.com/members/renegade/
Notes : SecureStore creates archives into which you can
place files. From what I saw on their web site, to
access aid files, you have to pull them out of the
archive again. While the screen shots show some nice
displays (e.g., which crypto used, compression ratio,
etc.), this mode of operation does not appeal to me.
Product : Pretty Good Privacy (PGP)
Manufacturer : PGP, Inc. (well, Network Associates now, I guess)
Type : Manual
Crypto : CAST, IDEA, Triple-DES
Features : Too many to list.
Cost : Free
Preview? : Yes
Web : http://www.pgp.com/
Notes : Listed just for the sake of completeness. And it's
not at all bad for manual encrypt/decrypt -- version 5.5
has a nice toolbar and tray interface. But you'll want
it for all the other messaging features anyway...