Comparison of disk encryption software

From Wikipedia, the free encyclopedia

Jump to: navigation, search

This is a technical feature comparison of different disk encryption software.

Contents

[edit] Background information

Name Developer First released Licensing Operating system support Maintained?
ArchiCrypt Live Softwaredevelopment Remus ArchiCrypt 1998 Commercial,
closed source		 Windows NT-based, Windows 2000, Windows XP, Windows Vista Yes
BestCrypt Jetico 1993[1] Commercial, limited source code Linux 2.6, Windows NT-based, Windows 9x, Windows 3.1, MS-DOS Yes
BitArmor DataControl BitArmor Systems Inc. May 2008 Commercial,
closed source		 Windows XP, Windows 2003 Server Yes
BitLocker Drive Encryption Microsoft 2006 Commercial,
closed source		 Windows Vista Enterprise, Windows Vista Ultimate, Windows Server 2008 Yes
CGD Roland C. Dowdeswell 2002-10-04[2] Free, open source (BSD) NetBSD 2.0+ Yes
Check Point Full Disk Encryption Check Point Software Technologies Ltd 1999[3][4][5] Commercial,
closed source.		 Linux, Windows, Mac OS X Yes
CrossCrypt Steven Scherrer 2004-02-10[6] Free, open source (GPL) Windows 2000, XP Unmaintained
CryptArchiver WinEncrypt ? Commercial,
closed source		 Windows NT-based Yes
Cryptic Disk Exlade, Inc. 2002 Commercial,
closed source		 Windows 2000, XP, 2003, Vista Yes
cryptoloop ? 2003-07-02[7] Free, open source (GPL) Linux 2.5–2.6 Deprecated, known vulnerabilities
Discryptor Cosect 2008 Commercial,
closed source		 Windows 2000, XP, Server 2003, Vista, Server 2008 Yes
DiskCryptor ntldr 2007 Free, open source (GPL) Windows 2000, XP, Server 2003, Vista, Server 2008 Yes
DISK Protect BeCrypt Ltd 2001 Commercial,
closed source		 Windows NT-based Yes
dm-crypt/cryptsetup Christophe Saout 2004-03-11[8] Free, open source (GPL) Linux 2.6, Windows 2000, XP, Vista (via FreeOTFE) Yes
dm-crypt/LUKS Clemens Fruhwirth (LUKS) 2005-02-05[9] Free, open source (GPL) Linux 2.6, Windows 2000, XP, Vista (via FreeOTFE) Yes
DriveCrypt SecurStar GmbH 2001 Commercial,
closed source		 Windows NT-based Yes
DriveSentry GoAnywhere 2 DriveSentry 2008 Commercial, Free 25 Encryption Credits closed source Windows XP, Vista Yes
E4M Paul Le Roux 1998-12-18[10] Free, open source (custom) Windows 9x, Windows NT-2K Unmaintained
e-Capsule Private Safe EISST Ltd. 2005 Commercial,
closed source		 Windows 2000, XP, 2003, Vista Yes
eCryptfs Dustin Kirkland, Tyler Hicks, (formerly Mike Halcrow) 2005[11] Free, open source (GPL) Linux 2.6.19+ Yes
FileVault Apple Computer 2003-10-24 Commercial,
closed source		 Mac OS X v10.3 and later Yes
FinallySecure Secude 2007 Closed source Windows XP, Vista Yes
FREE CompuSec CE-Infosys ? Freeware,
closed source		 Linux 2.4-2.6, Windows 2000, XP, Vista Yes
FreeOTFE Sarah Dean 2004-10-10[12] Freeware, open source Linux (via dm-crypt/LUKS); Windows 2000, XP, Vista, Pocket PC Yes
GBDE Poul-Henning Kamp 2002-10-19[13] Free, open source (BSD) FreeBSD 5.0+ Yes
GELI Pawel Jakub Dawidek 2005-04-11[14] Free, open source (BSD) FreeBSD 6.0+ Yes
Keyparc Bloombase 2007[15] Free,
closed source		 Windows, Linux, Mac OS Yes
loop-AES Jari Ruusu 2001-04-11 Free, open source (GPL) Linux 2.0+ Yes
n-Crypt Pro n-Trance Security Ltd 2005 Commercial,
closed source		 Windows NT-based Yes
PGPDisk PGP Corporation 1998-09-01[16] Commercial, source available for personal review only[17] Windows NT-based, Mac OS X Yes
Private Disk Dekart 1993[18] Commercial,
closed source		 Windows 9x/NT-based/2000/2003/XP/Vista (32bit and 64bit) Yes
R-Crypto R-Tools Technology Inc 2008 Free,
closed source		 Windows 2000/XP/2003/Vista/7 (32/64 bit) Yes
McAfee Endpoint Encryption (SafeBoot) McAfee, Inc. 2007[19] Commercial,
closed source		 Microsoft Vista 32/64, Windows XP, Windows 2000, Windows Server 2003 SP1+ Yes
SafeGuard Easy Utimaco 1993[20] Commercial,
closed source		 Windows NT-based[21] Yes
SafeGuard PrivateDisk
 Utimaco[22]  ? Commercial,
closed source		 Windows Yes
SafeHouse Professional PC Dynamics, Inc. 1992 Commercial,
closed source		 Windows 9x/2K/XP/2003/Vista
(32/64 bit)		 Yes
Scramdisk Shaun Hollingworth 1997-07-01 Free, open source (custom) Windows 9x, Windows NT-2K Unmaintained
Scramdisk 4 Linux Hans-Ulrich Juettner 2005-08-06 [23] Free, open source (GPL) Linux 2.4–2.6 Yes
SecuBox Aiko Solutions 2007-02-19 Commercial,
closed source		 Windows CE, Windows Mobile Pocket PC, Smartphone [24] Yes
Secude securenotebook Secude 2003 Commercial,
closed source		 Windows XP/2000 Yes
SecureDoc WinMagic Inc. 1997 Commercial,
closed source		 Windows 2000/XP/Vista, Mac OS X[25] Yes
Sentry 2020 SoftWinter 1998[26] Commercial,
closed source		 Windows NT-based, Pocket PC Yes
SpyProof! Information Security Corp. 2002 Commercial,
closed source		 Windows NT4/2000/XP/Vista Yes
svnd / vnconfig OpenBSD 2000-12-01[27] Free, open source (BSD) OpenBSD Yes
TrueCrypt TrueCrypt Foundation 2004-02-02[28] Free, proprietary (source code available) Linux 2.4-2.6, Windows 2000, XP, 2003, Vista, Mac OS X Yes
Name Developer First released Licensing Operating system support Maintained?

[edit] Features

Name Hidden containers Pre-boot authentication Custom authentication Multiple keys Passphrase strengthening Hardware acceleration TPM Filesystems Two-factor authentication
BestCrypt Yes Yes No Yes[29] ? No No ? ?
BitArmor DataControl No Yes No Yes Yes No No NTFS, FAT32 on non-system volumes No
BitLocker Drive Encryption No Yes
(With PIN or USB key)[30]		 Yes[31] Yes[30]
 Yes
(Recovery keys only)		 No Yes[30] Limited Yes
CGD No No Yes[32] Yes[33] Yes[32] No No Any supported by OS Yes[32]
Checkpoint Full Disk Encryption ? Yes Yes Yes Yes ? Yes[34] ? Yes
CrossCrypt No No No No No No No ? No
CryptArchiver No No No No ? No No ? ?
cryptoloop No Yes[35] Yes No No Yes[citation needed] No Any supported by OS ?
DiskCryptor No Yes No No Yes Yes[36] No Any supported by OS Yes[37]
DISK Protect ? Yes[38] ? Yes[38] ? ? No ? ?
dm-crypt/cryptsetup No Yes[35] Yes No No Yes No Any supported by OS No
dm-crypt/LUKS No Yes[35] Yes Yes Yes Yes No Any supported by OS No
DriveCrypt Yes[39] Yes No Yes Yes No No ? Yes
DriveSentry GoAnywhere 2 No No Yes No Yes No ? Any supported by OS Yes
E4M No No No No ? No No ? No
e-Capsule Private Safe Yes[40] No No Yes[40] No Yes No ? ?
eCryptfs No No Yes Yes Yes Yes Yes uses the lower filesystem (stacking) Yes
FileVault No No No Two passwords[41] Yes[41] No No ? ?
FinallySecure No Yes Yes No Yes Yes Yes ? ?
FREE CompuSec No Yes No No No No No ? ?
FreeOTFE Yes No Yes[42] Yes[43] Yes No No Any supported by OS Yes
GBDE No No[44] Yes Yes[45] No[45] No[44] No Any supported by OS ?
GELI No Yes[44] Yes Yes[46] Yes[46] Yes[44] No Any supported by OS ?
Keyparc No No Yes Yes Yes Yes No ? ?
loop-AES No Yes[47] Yes[47] Yes[47] Yes[47] Yes[47] No Any supported by OS No
n-Crypt Pro No No No No N/A[48] No No ? ?
PGPDisk No Yes[49] ? Yes Yes[50] ? Yes ? Yes
Private Disk No No No Yes Yes No No Any supported by OS Yes
R-Crypto ? No ? ? ? ? ? Any supported by OS ?
McAfee Endpoint Encryption Yes Yes Yes Yes Yes No Yes ? Yes
SafeGuard Easy No Yes No Yes Yes No Yes[51] ? Yes
SafeGuard PrivateDisk ? ? ? ? ? ? Yes[34] ? ?
SafeHouse Professional No No Yes Yes Yes No No Any supported by OS Yes
Scramdisk Yes No No No No No No ? Last update to web site 2009-07-02
Scramdisk 4 Linux Yes[52] No No No Yes[52] No No ext2, ext3, reiserfs, minix, ntfs, vfat/msdos No
SecuBox No No No No Yes No No ? No
Secude securenotebook No Yes Yes No Yes No No ? ?
SecureDoc No Yes[53] Yes Yes Yes Yes Yes ? Yes
Sentry 2020 No No No ? ? No No ? ?
svnd / vnconfig No No No No Yes (optional by using -K) [54] Yes ? Any supported by OS ?
TrueCrypt Yes
(limited to one per
"outer" container)		 only on Windows[55] No No[56] Yes No No Any supported by OS Yes
Name Hidden containers Pre-boot authentication Custom authentication Multiple keys Passphrase strengthening Hardware acceleration TPM Filesystems Two-factor authentication


  • ^  Windows 7 introduces Bitlocker-To-Go which supports NTFS, FAT32 or exFAT, however for hard drive encryption, Windows Vista and later are limited to be installable only on NTFS volumes
  • ^  BitLocker can be used with a TPM PIN + external USB key for two-factor authentication

[edit] Layering

For more details on this topic, see Encryption layer in storage stack.
  • Whole disk: Whether the whole physical disk or logical volume can be encrypted, including the partition tables and master boot record. Note that this does not imply that the encrypted disk can be booted off of; refer to "pre-boot authentication" in the features comparison table.
  • Partition: Whether individual disk partitions can be encrypted.
  • File: Whether the encrypted container can be stored in a file (usually implemented as encrypted loop devices).
  • Swap space: Whether the swap space (called a "pagefile" on Windows) can be encrypted individually/explicitly.
  • Hibernation file: Whether the hibernation file is encrypted (if hibernation is supported).
Name Whole disk Partition File Swap space Hibernation file
ArchiCrypt Live Yes
(except for the boot volume)		 Yes Yes No No
BestCrypt Yes Yes[citation needed] Yes Yes Yes[citation needed]
BitArmor DataControl No Yes No Yes Yes
BitLocker Drive Encryption Yes
(except for the boot volume)		 Yes No Yes
(parent volume is encrypted)		 Yes
(parent volume is encrypted)
CGD Yes Yes Yes[32] Yes No
Check Point Full Disk Encryption Yes Yes ? Yes Yes
CrossCrypt No No Yes No No
CryptArchiver No No Yes No No
cryptoloop Yes Yes Yes Yes No
DiskCryptor Yes Yes No Yes Yes
dm-crypt Yes Yes Yes[57] Yes Yes[58]
DriveCrypt Yes Yes[39] Yes[39] No No
DriveSentry GoAnywhere 2 No Yes Yes No No
E4M No Yes Yes No No
e-Capsule Private Safe No No Yes[59] No No
eCryptfs No No Yes No No
FileVault No No Yes[41] Yes[41] No
FinallySecure Yes Yes No No No
FREE CompuSec Yes No Yes Yes Yes
FreeOTFE Yes
(except for the boot volume)		 Yes Yes No No
GBDE Yes Yes Yes[60] Yes No
GELI Yes Yes Yes[60] Yes No
Keyparc Yes Yes Yes Yes No
loop-AES Yes Yes[47] Yes[47] Yes[47] No
n-Crypt Pro Yes Yes Yes No No
PGPDisk Yes Yes Yes Yes Yes
Private Disk No No Yes No No
R-Crypto No No Yes No No
Safeboot Device Encryption
(Now McAfee Endpoint Encryption)		 Yes Yes Yes Yes Yes[61]
SafeGuard Easy Yes Yes No Yes Yes[citation needed]
SafeHouse Professional No No Yes No No
Scramdisk No Yes Yes No No
Scramdisk 4 Linux Yes Yes Yes Yes No
SecuBox No No Yes N/A No
Secude securenotebook Yes Yes No No No
SecureDoc Yes[53] Yes Yes Yes Yes
Sentry 2020 No No Yes No No
svnd / vnconfig ? Yes Yes No (encrypted by default in OpenBSD)[62] ?
SpyProof! No Yes Yes No No
TrueCrypt Yes Yes Yes Yes only on Windows[63]
Name Whole disk Partition File Swap space Hibernation file

[edit] Modes of operation

For more details on this topic, see Disk encryption theory.

Different modes of operation supported by the software. Note that an encrypted volume can only use one mode of operation.

  • CBC with predictable IVs: The CBC (cipher block chaining) mode where initialization vectors are statically derived from the sector number and are not secret; this means that IVs are re-used when overwriting a sector and the vectors can easily be guessed by an attacker, leading to watermarking attacks.
  • CBC with secret IVs: The CBC mode where initialization vectors are statically derived from the encryption key and sector number. The IVs are secret, but they are re-used with overwrites. Methods for this include ESSIV and encrypted sector numbers (CGD).
  • CBC with random per-sector keys: The CBC mode where random keys are generated for each sector when it is written to, thus does not exhibit the typical weaknesses of CBC with re-used initialization vectors. The individual sector keys are stored on disk and encrypted with a master key. (See GBDE for details)
  • LRW: The Liskov-Rivest-Wagner tweakable narrow-block mode, a mode of operation specifically designed for disk encryption. Superseded by the more secure XTS mode due to security concerns.[64]
  • XTS: XEX-based Tweaked CodeBook mode (TCB) with CipherText Stealing (CTS), the SISWG (IEEE P1619) standard for disk encryption.
Name CBC w/ predictable IVs CBC w/ secret IVs CBC w/ random per-sector keys LRW XTS
ArchiCrypt Live No No No Legacy support [65] Yes
BestCrypt ? ? No Yes[66] Yes[67]
BitArmor DataControl No Yes Plumb-IV No No
BitLocker Drive Encryption No[68] Yes[68] No No No
CGD No Yes[69] No No No
Check Point Full Disk Encryption ? ? ? ? ?
CrossCrypt Yes No No No No
CryptArchiver ? ? ? ? ?
cryptoloop Yes No No No No
DiskCryptor No No No No Yes
dm-crypt Yes Yes No Yes, using *-lrw-benbi[70] Yes, using *-xts-plain
DriveCrypt ? ? ? ? ?
DriveSentry GoAnywhere 2 ? ? ? ? ?
E4M ? ? ? No No
e-Capsule Private Safe ? ? ? ? ?
eCryptfs No Yes ? No No
FileVault Yes[41] No No No No
FinallySecure ? ? ? ? ?
FREE CompuSec ? ? ? ? ?
FreeOTFE Yes Yes No Yes Yes
GBDE No No Yes[45] No No
GELI No Yes[71] No No No
Keyparc ? Yes ? ? ?
loop-AES single-key, multi-key-v2 modes[47] multi-key-v3 mode[47] No No No
n-Crypt Pro ? ? No No No
PGPDisk ? ? ? ? ?
Private Disk Yes No Yes[citation needed] No No
R-Crypto ? ? ? ? ?
McAfee Endpoint Encryption for PC's (SafeBoot Device Encryption) No Yes No No No
SafeGuard Easy ? ? ? ? ?
SafeHouse Professional Yes No No No No
Scramdisk No Yes No No No
Scramdisk 4 Linux No Yes[72] No Yes[73] Yes[74]
SecuBox Yes No No No No
Secude securenotebook ? ? ? ? ?
SecureDoc ? ? ? ? ?
Sentry 2020 ? ? ? ? ?
svnd / vnconfig ? ? ? ? ?
TrueCrypt Legacy support [75] No No Legacy support [76] Yes [77]
Name CBC w/ predictable IVs CBC w/ secret IVs CBC w/ random per-sector keys LRW XTS

[edit] See also

[edit] External links

[edit] Notes and references

  1. ^ "Jetico Company Info". Jetico. http://www.jetico.com/company.htm. Retrieved on 2007-01-05. 
  2. ^ Roland Dowdeswell (2002-10-04). "CryptoGraphic Disk". mailing list announcement. http://mail-index.netbsd.org/current-users/2002/10/04/0008.html. Retrieved on 2007-01-14. 
  3. ^ Original release as Protect Data Security Inc.'s "Protect!""Protect guards laptop and desktop data". http://www.infoworld.com/cgi-bin/displayArchive.pl?/99/25/c05-25.48.htm. Retrieved on 2008-09-03. 
  4. ^ Company and product name change to Pointsec "Protect Data Security Inc. changes name to Pointsec Mobile Technologies Inc.". http://web.archive.org/web/20040820174918/www.pointsec.com/news/news.asp?newsid=85. Retrieved on 2008-09-03. 
  5. ^ "Check Point Completes the Offer for Protect Data with Substantial Acceptance of 87.1 Percent". http://www.checkpoint.com/press/2007/protectdataacquisition011107.html. Retrieved on 2008-09-03. 
  6. ^ Sarah Dean (2004-02-10). "OTFEDB entry". http://otfedb.sdean12.org/cgi-bin/pub_factsheet.cgi?SYSTEM_ID=46. Retrieved on 2008-08-10. 
  7. ^ Initial cryptoloop patches for the Linux 2.5 development kernel: http://uwsg.iu.edu/hypermail/linux/kernel/0307.0/0348.html
  8. ^ dm-crypt was first included in Linux kernel version 2.6.4: http://lwn.net/Articles/75404/
  9. ^ Clemens Fruhwirth. "LUKS version history". http://luks.endorphin.org/dm-crypt. Retrieved on 2006-12-24. 
  10. ^ "archived E4M documentation". http://web.archive.org/web/20000524061402/www.e4m.net/news.html. ).
  11. ^ "eCryptfs". http://ecryptfs.sourceforge.net. Retrieved on 2008-04-29. 
  12. ^ "FreeOTFE version history". http://www.freeotfe.org/docs/version_history.htm#version_history. Retrieved on 2006-12-24. 
  13. ^ "gbde(4) man page in FreeBSD 4.11". GBDE manual page as it appeared in FreeBSD 4.11. http://www.freebsd.org/cgi/man.cgi?query=gbde&apropos=0&sektion=4&manpath=FreeBSD+5.0-RELEASE&format=html. Retrieved on 2006-12-24. 
  14. ^ "geli(8) man page in FreeBSD 6.0". GELI manual page as it first appeared in FreeBSD 6.0. http://www.freebsd.org/cgi/man.cgi?query=geli&apropos=0&sektion=0&manpath=FreeBSD+6.0-RELEASE&format=html. Retrieved on 2006-12-24. 
  15. ^ "Keyparc - Free Encryption for Everyone". Bloombase. http://www.keyparc.com. 
  16. ^ "PGP 6.0 Freeware released - any int'l links?". comp.security.pgp. (Web link). Retrieved on 2007-01-04.
  17. ^ PGPdisk source for review only. See [1].
  18. ^ "Dekart Encryption software timeline". Dekart. http://www.lazybit.com/index.php/a/2007/04/19/dekart_private_disk_timeline. 
  19. ^ "McAfee Endpoint Encryption". product description. McAfee. http://www.mcafee.com/us/enterprise/products/data_protection/data_encryption/endpoint_encryption.html. Retrieved on 2009-03-04. 
  20. ^ "SafeGuard Easy 4.0 Technical Whitepaper". Utimaco. http://www.conseils.fi/pdf/WP_SG_Easy_40_Technical_ENG.pdf. Retrieved on 2007-07-03. 
  21. ^ Former versions for MS-DOS, Windows 3.x, Windows 9x, Windows NT4, IBM OS/2 up to Warp 4.
  22. ^ Rebranded as ThinkVantage Client Security "ThinkVantage Technologies Deployment Guide". Lenovo. ftp://ftp.software.ibm.com/pc/pccbbs/thinkcentre_pdf/rr30mst.pdf. Retrieved on 2008-03-05. 
  23. ^ "ScramDisk 4 Linux Releases". http://sourceforge.net/project/showfiles.php?group_id=101952&package_id=109447. 
  24. ^ "SecuBox versions for SH3, SH4, MIPS processors, Smartphone version". http://www.aikosolutions.com/download/. ).
  25. ^ SecureDoc Full-Disk Encryption for Mac
  26. ^ "Sentry 2020 news". http://www.softwinter.com/. Retrieved on 2007-01-02. 
  27. ^ OpenBSD 2.8 change notes
  28. ^ TrueCrypt version history
  29. ^ Supported by the BestCrypt container format; see BestCrypt SDK
  30. ^ a b c "BitLocker Drive Encryption Technical Overview". Microsoft. http://technet2.microsoft.com/windowsserver2008/en/library/ce4d5a2e-59a5-4742-89cc-ef9f5908b4731033.mspx?mfr=true. Retrieved on 2008-03-13. 
  31. ^ BitLocker Drive Encryption: Value Add Extensibility Options
  32. ^ a b c d Roland C. Dowdeswell, John Ioannidis. "The CryptoGraphic Disk Driver" (PDF). CGD design paper. http://www.imrryr.org/~elric/cgd/cgd.pdf. Retrieved on 2006-12-24. 
  33. ^ Federico Biancuzzi (2005-12-21). "Inside NetBSD's CGD". interview with Roland Dowdeswell. ONLamp.com. http://www.onlamp.com/pub/a/bsd/2005/12/21/netbsd_cgd.html?page=1. 
  34. ^ a b "ThinkVantage Technologies Deployment Guide". Lenovo. ftp://ftp.software.ibm.com/pc/pccbbs/thinkcentre_pdf/rr30mst.pdf. Retrieved on 2008-03-05. 
  35. ^ a b c dm-crypt and cryptoloop volumes can be mounted from the initrd before the system is booted
  36. ^ Support for hardware cryptography found in VIA processors. http://diskcryptor.net/index.php/DiskCryptor_en#Program_features
  37. ^ Ability to place boot loader on external medium and to authenticate using the key medium. Support for key files. http://diskcryptor.net/index.php/DiskCryptor_en#Program_features
  38. ^ a b "DISK Protect 4.2 Data Sheet" (PDF). http://www.becrypt.com/us/downloads/DISK%20Protect%204.2_US.pdf. Retrieved on 2008-02-27. 
  39. ^ a b c "DriveCrypt features". SecurStar GmbH. http://www.securstar.com/products_drivecrypt.php. Retrieved on 2007-01-03. 
  40. ^ a b "Multi level access with separate access credentials, each enabling a different set of functional or logical operations". EISST Ltd.. http://www.eisst.com/products/private_safe/compare/. Retrieved on 2007-07-25. 
  41. ^ a b c d e Jacob Appelbaum, Ralf-Philipp Weinmann (2006-12-29) (PDF). Unlocking FileVault: An Analysis of Apple's disk encryption. http://crypto.nsa.org/vilefault/23C3-VileFault.pdf. Retrieved on 2007-03-31. 
  42. ^ FreeOTFE has a modular architecture and set of components to allow 3rd party integration
  43. ^ FreeOTFE allows multiple keys to mount the same container file via encrypted keyfiles
  44. ^ a b c d "FreeBSD Handbook: Encrypting Disk Partitions". http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/disks-encrypting.html. Retrieved on 2006-12-24. 
  45. ^ a b c Poul-Henning Kamp. "GBDE - GEOM Based Disk Encryption" (PDF). GBDE design document. http://phk.freebsd.dk/pubs/bsdcon-03.gbde.paper.pdf. Retrieved on 2006-12-24. 
  46. ^ a b "geli(8) man page in FreeBSD-current". GELI manual page in current FreeBSD. http://www.freebsd.org/cgi/man.cgi?query=geli&apropos=0&sektion=0&manpath=FreeBSD+7-current&format=html. Retrieved on 2006-12-24. 
  47. ^ a b c d e f g h i j Jari Ruusu. "loop-AES README file". http://loop-aes.sourceforge.net/loop-AES.README. Retrieved on 2007-04-23. 
  48. ^ n-Crypt Pro does not use password authentication — biometric/USB dongle authentication only
  49. ^ "PGP Whole Disk Encryption FAQ". PGP Corporation. http://www.pgp.com/products/wholediskencryption/faq.html. Retrieved on 2006-12-24. 
  50. ^ PGP private keys are always protected by strengthened passphrases
  51. ^ "Embedded Security: Trusted Platform Module Technology Comes of Age". Utimaco. http://americas.utimaco.com/encryption/TPM-Technology-Comes-Of-Age.html. Retrieved on 2008-03-04. 
  52. ^ a b For Truecrypt containers
  53. ^ a b "SecureDoc Product Information". WinMagic Inc.. http://www.winmagic.com/solutions/securedoc.html. Retrieved on 2008-03-05. 
  54. ^ http://www.openbsd.org/cgi-bin/man.cgi?query=vnconfig&sektion=8 OpenBSD Manual Pages: vnconfig(8)
  55. ^ http://www.truecrypt.org/docs/sys-encryption-supported-os.php
  56. ^ Although each volume encrypted with TrueCrypt can only have one active master key, it is possible to access its contents through more than one header. Each header can have a different password and/or keyfiles if any (cf. TrueCrypt FAQ: Is there a way for an administrator to reset a password when a user forgets it?)
  57. ^ dm-crypt can encrypt a file-based volume when used with the losetup utility included with all major Linux distributions
  58. ^ yes, but the user needs custom scripts: http://www.linuxquestions.org/questions/slackware-14/luks-encryption-swap-and-hibernate-627958/
  59. ^ Uses proprietary e-Capsule file system not exposed to the OS.
  60. ^ a b File-based volume encryption is possible when used with mdconfig(8) utility.
  61. ^ "Control Break Internation Debuts SafeBoot Version 4.27". http://www.entrepreneur.com/tradejournals/article/120829729.html. Retrieved on 2008-08-12. 
  62. ^ http://www.openbsd.org/plus38.html OpenBSD 3.8 change notes
  63. ^ http://www.truecrypt.org/docs/sys-encryption-supported-os.php
  64. ^ LRW_issue
  65. ^ Containers created with ArchiCrypt Live version 5 use LRW
  66. ^ "New features in BestCrypt version 8". Jetico. http://www.jetico.com/bc8_web_help/html/03_new_features/01_new_features.htm. Retrieved on 2007-03-02. 
  67. ^ "New features in version 2". Jetico. http://www.jetico.com/bcve_web_help/html/01_introduction/04_new_in_version.htm. Retrieved on 2009-03-01. 
  68. ^ a b Niels Fergusson (August 2006). AES-CBC + Elephant Diffuser: A Disk Encryption Algorithm for Windows Vista. Microsoft. http://download.microsoft.com/download/0/2/3/0238acaf-d3bf-4a6d-b3d6-0a0be4bbb36e/BitLockerCipher200608.pdf. Retrieved on 2008-02-22. 
  69. ^ "man 4 cgd in NetBSD-current". NetBSD current manual page on CGD. 2006-03-11. http://netbsd.gw.com/cgi-bin/man-cgi?cgd+4+NetBSD-current. Retrieved on 2006-12-24. 
  70. ^ Starting with Linux kernel version 2.6.20, CryptoAPI supports the LRW mode: http://lwn.net/Articles/213650/
  71. ^ "Linux/BSD disk encryption comparison". http://mareichelt.de/pub/notmine/linuxbsd-comparison.html. Retrieved on 2006-12-24. 
  72. ^ For Scramdisk containers
  73. ^ For Truecrypt 4 containers
  74. ^ For Truecrypt 5 and 6 containers
  75. ^ Containers created with TrueCrypt versions 1.0 through 4.0 use CBC.
  76. ^ Containers created with TrueCrypt versions 4.1 through 4.3a use LRW, and support CBC for opening legacy containers only.
  77. ^ Containers created with TrueCrypt versions 5.0 or later use XTS, and support LRW/CBC for opening legacy containers only.
Retrieved from "http://en.wikipedia.org/wiki/Comparison_of_disk_encryption_software"
Personal tools